Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8a70452c242e05c369eaea355195d600N.exe

  • Size

    445KB

  • Sample

    240824-ahkqzsvfpf

  • MD5

    8a70452c242e05c369eaea355195d600

  • SHA1

    b69b7cce0137fe213088af52cd702fc8e5a4139c

  • SHA256

    5b3c04c6d97746fd514c2be784aabce7af36049d41fee7e0927107b8228a3d33

  • SHA512

    23f8a5a116661aea008dc8b8a238d1fbee340c326263966738641780b1542361894035602af5bb548d810aea7792a0d05574722319a777a1a192395f42d8ceb0

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09Jg:n3C9ytvn8whkb4i3e3GFO6Jg

Malware Config

Targets

    • Target

      8a70452c242e05c369eaea355195d600N.exe

    • Size

      445KB

    • MD5

      8a70452c242e05c369eaea355195d600

    • SHA1

      b69b7cce0137fe213088af52cd702fc8e5a4139c

    • SHA256

      5b3c04c6d97746fd514c2be784aabce7af36049d41fee7e0927107b8228a3d33

    • SHA512

      23f8a5a116661aea008dc8b8a238d1fbee340c326263966738641780b1542361894035602af5bb548d810aea7792a0d05574722319a777a1a192395f42d8ceb0

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09Jg:n3C9ytvn8whkb4i3e3GFO6Jg

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks