Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    abefdeacfb2be9da20f2ce9361402060N.exe

  • Size

    64KB

  • Sample

    240820-xs6grsycmh

  • MD5

    abefdeacfb2be9da20f2ce9361402060

  • SHA1

    d9946c952de2e1183d367f728d35218a45da2537

  • SHA256

    df12688ebb6ea87fff1694dfdee51aaf1bcdea3f8062cad3ca32074de65d3c67

  • SHA512

    e5fcd61ef726dc1a526e58ff56e64f8b8a64a3c448582abcc807fbfae9afba0a85e8f334474e9167e8371e479392eff2d8cc48f33849a73a066351771c2f9937

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzNr:ymb3NkkiQ3mdBjFIvlpr

Malware Config

Targets

    • Target

      abefdeacfb2be9da20f2ce9361402060N.exe

    • Size

      64KB

    • MD5

      abefdeacfb2be9da20f2ce9361402060

    • SHA1

      d9946c952de2e1183d367f728d35218a45da2537

    • SHA256

      df12688ebb6ea87fff1694dfdee51aaf1bcdea3f8062cad3ca32074de65d3c67

    • SHA512

      e5fcd61ef726dc1a526e58ff56e64f8b8a64a3c448582abcc807fbfae9afba0a85e8f334474e9167e8371e479392eff2d8cc48f33849a73a066351771c2f9937

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzNr:ymb3NkkiQ3mdBjFIvlpr

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks