Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a0224f122f55ac11e57d3c72e256e88f6f575a5bc4757ccd644186ce18b26e72

  • Size

    69KB

  • Sample

    240825-c6kf8svbmm

  • MD5

    3e88103cdf4469b3fa09048c08308c3c

  • SHA1

    bad18ebcf2fe06408593aac905cfa9a6b9c85166

  • SHA256

    a0224f122f55ac11e57d3c72e256e88f6f575a5bc4757ccd644186ce18b26e72

  • SHA512

    3f1e0db1b9d9b7e4202ee3940169abf760d45e7b5f0d1a1021c8d6a4b9133f9b40860d95b63205707d3d0d1e875632ede52cd7dbb62a2121530a141864e7655e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUuYp+5C8+Luvdv:ymb3NkkiQ3mdBjF0yMliv

Malware Config

Targets

    • Target

      a0224f122f55ac11e57d3c72e256e88f6f575a5bc4757ccd644186ce18b26e72

    • Size

      69KB

    • MD5

      3e88103cdf4469b3fa09048c08308c3c

    • SHA1

      bad18ebcf2fe06408593aac905cfa9a6b9c85166

    • SHA256

      a0224f122f55ac11e57d3c72e256e88f6f575a5bc4757ccd644186ce18b26e72

    • SHA512

      3f1e0db1b9d9b7e4202ee3940169abf760d45e7b5f0d1a1021c8d6a4b9133f9b40860d95b63205707d3d0d1e875632ede52cd7dbb62a2121530a141864e7655e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUuYp+5C8+Luvdv:ymb3NkkiQ3mdBjF0yMliv

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks