Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b631c5c66bef2e77934162d152b05ae5576830fc4cf3f3e25bbb2903663a9916

  • Size

    79KB

  • Sample

    240902-deqpls1bpc

  • MD5

    5bf3d85491ed0bb928281b5d7381a0af

  • SHA1

    c0b66e5d9d4cd6ecfb090f15417da0ce710512f0

  • SHA256

    b631c5c66bef2e77934162d152b05ae5576830fc4cf3f3e25bbb2903663a9916

  • SHA512

    fbe1757fd1d78341d9250bb771efaeca74e36e8880e1e462588e5e5b0e8e59ee4eed3be0c8ee4ceb7bbc3036c028949f2c7922495c1f6ad13bcc7b0a6b03d9b9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC5rINFE4yeq:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCu4n

Malware Config

Targets

    • Target

      b631c5c66bef2e77934162d152b05ae5576830fc4cf3f3e25bbb2903663a9916

    • Size

      79KB

    • MD5

      5bf3d85491ed0bb928281b5d7381a0af

    • SHA1

      c0b66e5d9d4cd6ecfb090f15417da0ce710512f0

    • SHA256

      b631c5c66bef2e77934162d152b05ae5576830fc4cf3f3e25bbb2903663a9916

    • SHA512

      fbe1757fd1d78341d9250bb771efaeca74e36e8880e1e462588e5e5b0e8e59ee4eed3be0c8ee4ceb7bbc3036c028949f2c7922495c1f6ad13bcc7b0a6b03d9b9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC5rINFE4yeq:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCu4n

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks