Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d13189b20b276dc9d6e461b0db49ccf0N.exe

  • Size

    529KB

  • Sample

    240821-1ghs4s1hrc

  • MD5

    d13189b20b276dc9d6e461b0db49ccf0

  • SHA1

    8000e58cb14eace04e24194228bf333ada707ddf

  • SHA256

    22b57fc92c9711a3fb22dad8e2d6e476453f3c5c82a6adf90a814f48b45a02ca

  • SHA512

    e19a96fb8cbc0d23531a2bd9dfdebd62b121a9514adc660ff5078a857a4cb081d53141c402af1447c900fe8a2f7815db4dea1261ccb2b295f97012415f033fdc

  • SSDEEP

    12288:y4wFHoS3eFp3IDvSbh5nP+UbGTHoSouKs8N0u/D6vIZS:HFp3lzZbGa5soS

Malware Config

Targets

    • Target

      d13189b20b276dc9d6e461b0db49ccf0N.exe

    • Size

      529KB

    • MD5

      d13189b20b276dc9d6e461b0db49ccf0

    • SHA1

      8000e58cb14eace04e24194228bf333ada707ddf

    • SHA256

      22b57fc92c9711a3fb22dad8e2d6e476453f3c5c82a6adf90a814f48b45a02ca

    • SHA512

      e19a96fb8cbc0d23531a2bd9dfdebd62b121a9514adc660ff5078a857a4cb081d53141c402af1447c900fe8a2f7815db4dea1261ccb2b295f97012415f033fdc

    • SSDEEP

      12288:y4wFHoS3eFp3IDvSbh5nP+UbGTHoSouKs8N0u/D6vIZS:HFp3lzZbGa5soS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks