Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f9cb1eea530a3dee983a3f328d2458831137bf3ec8259e052f157f5f739109f1

  • Size

    96KB

  • Sample

    240829-f9legswcpf

  • MD5

    2e5025eeefc7192c12d14f6e7234d9c8

  • SHA1

    fc38fa5d794aba9d30ae82cb62e3c57aff804477

  • SHA256

    f9cb1eea530a3dee983a3f328d2458831137bf3ec8259e052f157f5f739109f1

  • SHA512

    3b226cae7fd45dadde4d5baf82176a107b4725b6e63d1094f687c028ca6f3c6d666ee4c190c6e1b9fc5a37069a165eb59895e0d353343d38a360487b8b18431a

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qP1hvZo66Ox4oq2SQwfTrg:ymb3NkkiQ3mdBjFIj+qNhvZuHQYfw4jS

Malware Config

Targets

    • Target

      f9cb1eea530a3dee983a3f328d2458831137bf3ec8259e052f157f5f739109f1

    • Size

      96KB

    • MD5

      2e5025eeefc7192c12d14f6e7234d9c8

    • SHA1

      fc38fa5d794aba9d30ae82cb62e3c57aff804477

    • SHA256

      f9cb1eea530a3dee983a3f328d2458831137bf3ec8259e052f157f5f739109f1

    • SHA512

      3b226cae7fd45dadde4d5baf82176a107b4725b6e63d1094f687c028ca6f3c6d666ee4c190c6e1b9fc5a37069a165eb59895e0d353343d38a360487b8b18431a

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qP1hvZo66Ox4oq2SQwfTrg:ymb3NkkiQ3mdBjFIj+qNhvZuHQYfw4jS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks