Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1c043c14644307d356a7cd5fff744fc0N.exe

  • Size

    250KB

  • Sample

    240903-d88ghsxejg

  • MD5

    1c043c14644307d356a7cd5fff744fc0

  • SHA1

    4cdc343158a046212ec6b509aba4935d3593e5d6

  • SHA256

    37d229fad943ab342d039685018c9218b69eff13f38346cbd57b2c183ec01ae0

  • SHA512

    139b44f932266739bb464383458122de630664a8281d41612a11e71bc4ef9befe21f91fc43e90fe1528900dd80bafb0acae67ad762a9f6f1116f070d934af68b

  • SSDEEP

    6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRly8:n3C9uD6AUDCa4NYmRl

Malware Config

Targets

    • Target

      1c043c14644307d356a7cd5fff744fc0N.exe

    • Size

      250KB

    • MD5

      1c043c14644307d356a7cd5fff744fc0

    • SHA1

      4cdc343158a046212ec6b509aba4935d3593e5d6

    • SHA256

      37d229fad943ab342d039685018c9218b69eff13f38346cbd57b2c183ec01ae0

    • SHA512

      139b44f932266739bb464383458122de630664a8281d41612a11e71bc4ef9befe21f91fc43e90fe1528900dd80bafb0acae67ad762a9f6f1116f070d934af68b

    • SSDEEP

      6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRly8:n3C9uD6AUDCa4NYmRl

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks