Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4508b3065128bff4d98c6a13bb8f1fb0N.exe

  • Size

    59KB

  • Sample

    240825-j8as5sthne

  • MD5

    4508b3065128bff4d98c6a13bb8f1fb0

  • SHA1

    867de64fd52c80d06769b119db92bddab2fa87f0

  • SHA256

    a05852291fbc686247cb432de4bf11e79baaed738f38a453699fa2b63dfaa1f5

  • SHA512

    7cbd5326476d360a048a5476b99c8f208df8e721d826b15435e301bb07bc3efd267a8fd13fd9a2571a540422c440f57b00c857dd0d42b21045bdd531f1963f7c

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb+8RI:ymb3NkkiQ3mdBjFIjRI

Malware Config

Targets

    • Target

      4508b3065128bff4d98c6a13bb8f1fb0N.exe

    • Size

      59KB

    • MD5

      4508b3065128bff4d98c6a13bb8f1fb0

    • SHA1

      867de64fd52c80d06769b119db92bddab2fa87f0

    • SHA256

      a05852291fbc686247cb432de4bf11e79baaed738f38a453699fa2b63dfaa1f5

    • SHA512

      7cbd5326476d360a048a5476b99c8f208df8e721d826b15435e301bb07bc3efd267a8fd13fd9a2571a540422c440f57b00c857dd0d42b21045bdd531f1963f7c

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb+8RI:ymb3NkkiQ3mdBjFIjRI

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks