Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d4dc49068ac36bfdcf50bd11681edae0N.exe

  • Size

    223KB

  • Sample

    240821-mtfydstfra

  • MD5

    d4dc49068ac36bfdcf50bd11681edae0

  • SHA1

    5783b2c1a945b22f6894553342bc3b3128db9827

  • SHA256

    1e130498c2ffc945e36d9a9a0b00f76a9c059509ffc7e82a7acf83eb6545dc47

  • SHA512

    973f1162c7c4244cf44cbb59bf1fac35023113f0ca642aa2b27b89c90be01d9cd331a8060ba67984895c81258c89fefba9d9b8c816c5454f9c0a59ec250d3842

  • SSDEEP

    6144:ocm4FmowdHoSGg+O7lmFAszBd+za/p1g+y/9g0tPbXxk542u:u4wFHoSGg+amF1zBR/pS+y/9g4jXxk9u

Malware Config

Targets

    • Target

      d4dc49068ac36bfdcf50bd11681edae0N.exe

    • Size

      223KB

    • MD5

      d4dc49068ac36bfdcf50bd11681edae0

    • SHA1

      5783b2c1a945b22f6894553342bc3b3128db9827

    • SHA256

      1e130498c2ffc945e36d9a9a0b00f76a9c059509ffc7e82a7acf83eb6545dc47

    • SHA512

      973f1162c7c4244cf44cbb59bf1fac35023113f0ca642aa2b27b89c90be01d9cd331a8060ba67984895c81258c89fefba9d9b8c816c5454f9c0a59ec250d3842

    • SSDEEP

      6144:ocm4FmowdHoSGg+O7lmFAszBd+za/p1g+y/9g0tPbXxk542u:u4wFHoSGg+amF1zBR/pS+y/9g4jXxk9u

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks