Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ce942a23ee4d054f0b06b091f109afd0N.exe

  • Size

    64KB

  • Sample

    240821-tawcas1bkp

  • MD5

    ce942a23ee4d054f0b06b091f109afd0

  • SHA1

    aac0ef09d6cb1d16d51e1846c4f70ef186ab8607

  • SHA256

    8c51a8ba9c64bf6e174c2817bc476b49b8d2c357280b7832c44d40186693d1a6

  • SHA512

    f12c5fabd6eb2281cc0fa2e21d44cab75ab27dc653252fce83c0307005e5c4009fd79633ee157d1c970ac29cece2c59eeaa0c38aeebfc9a11fa0bc93edb82969

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qPtW:ymb3NkkiQ3mdBjFIj+qA

Malware Config

Targets

    • Target

      ce942a23ee4d054f0b06b091f109afd0N.exe

    • Size

      64KB

    • MD5

      ce942a23ee4d054f0b06b091f109afd0

    • SHA1

      aac0ef09d6cb1d16d51e1846c4f70ef186ab8607

    • SHA256

      8c51a8ba9c64bf6e174c2817bc476b49b8d2c357280b7832c44d40186693d1a6

    • SHA512

      f12c5fabd6eb2281cc0fa2e21d44cab75ab27dc653252fce83c0307005e5c4009fd79633ee157d1c970ac29cece2c59eeaa0c38aeebfc9a11fa0bc93edb82969

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qPtW:ymb3NkkiQ3mdBjFIj+qA

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks