Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b58fff930e892b84635f2a3054693a70N.exe

  • Size

    261KB

  • Sample

    240818-dvay4asemh

  • MD5

    b58fff930e892b84635f2a3054693a70

  • SHA1

    6531e70cd467de9461d1362cf2bf764d80ab4ec7

  • SHA256

    1a773e6696b1afe09189e023a3e5be75f303df90692ae6cbbee8c543c228ade7

  • SHA512

    a0f08f1fde5a8cdd0791f99c2fe8a4bf1e7995eca0beb1f0d0095097565b3f62c0092761fa0bb38098151101fe5e2fc06e1b4c5e2e86da8e9781045ab0672dce

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0qF:n3C9ytvn8whkb4i3e3GF/F

Malware Config

Targets

    • Target

      b58fff930e892b84635f2a3054693a70N.exe

    • Size

      261KB

    • MD5

      b58fff930e892b84635f2a3054693a70

    • SHA1

      6531e70cd467de9461d1362cf2bf764d80ab4ec7

    • SHA256

      1a773e6696b1afe09189e023a3e5be75f303df90692ae6cbbee8c543c228ade7

    • SHA512

      a0f08f1fde5a8cdd0791f99c2fe8a4bf1e7995eca0beb1f0d0095097565b3f62c0092761fa0bb38098151101fe5e2fc06e1b4c5e2e86da8e9781045ab0672dce

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0qF:n3C9ytvn8whkb4i3e3GF/F

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks