Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3cde120534bd025cbb5fe6309adff820N.exe

  • Size

    66KB

  • Sample

    240818-mdys9ssbkl

  • MD5

    3cde120534bd025cbb5fe6309adff820

  • SHA1

    20c06204c8221e5c8f7dbac06decd2142780dc45

  • SHA256

    4d187763423dc8b8326126654012bd2aa2ddfeb3580307fd9153e9fb314bfc6c

  • SHA512

    0eaeff459d4bfe32a5ccb6729cecc76639669cd0dd486f454f340267dfa7b95bdecdba74912692f4d0c30c70d9bd15adebe5ed32e2ad4c27be292486c27f0176

  • SSDEEP

    1536:WvQBeOGtrYS3srx93UBWfwC6Ggnouy8DKsrQHbhnyLFWZ:WhOmTsF93UYfwC6GIoutz075yL6

Malware Config

Targets

    • Target

      3cde120534bd025cbb5fe6309adff820N.exe

    • Size

      66KB

    • MD5

      3cde120534bd025cbb5fe6309adff820

    • SHA1

      20c06204c8221e5c8f7dbac06decd2142780dc45

    • SHA256

      4d187763423dc8b8326126654012bd2aa2ddfeb3580307fd9153e9fb314bfc6c

    • SHA512

      0eaeff459d4bfe32a5ccb6729cecc76639669cd0dd486f454f340267dfa7b95bdecdba74912692f4d0c30c70d9bd15adebe5ed32e2ad4c27be292486c27f0176

    • SSDEEP

      1536:WvQBeOGtrYS3srx93UBWfwC6Ggnouy8DKsrQHbhnyLFWZ:WhOmTsF93UYfwC6GIoutz075yL6

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks