Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eaf1f5a94189ec963d5692d428d5c390N.exe

  • Size

    64KB

  • Sample

    240905-l4hpasyfrb

  • MD5

    eaf1f5a94189ec963d5692d428d5c390

  • SHA1

    ce250897becd6dc02da5e96bd28eebea707108f8

  • SHA256

    9ac72314d261bcda0fd8e985fcca41c1f520fa36b985cdca4911f05c203441cd

  • SHA512

    e86e47a830b969fba79aa9be3d21f219e9b8555f88eea9a9603ad5c8f730405397feb9ff23fbf697b65999fa61e4f064f11e391e2fac6cd92031c9f5ffb35999

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzNL:ymb3NkkiQ3mdBjFIvlpL

Malware Config

Targets

    • Target

      eaf1f5a94189ec963d5692d428d5c390N.exe

    • Size

      64KB

    • MD5

      eaf1f5a94189ec963d5692d428d5c390

    • SHA1

      ce250897becd6dc02da5e96bd28eebea707108f8

    • SHA256

      9ac72314d261bcda0fd8e985fcca41c1f520fa36b985cdca4911f05c203441cd

    • SHA512

      e86e47a830b969fba79aa9be3d21f219e9b8555f88eea9a9603ad5c8f730405397feb9ff23fbf697b65999fa61e4f064f11e391e2fac6cd92031c9f5ffb35999

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzNL:ymb3NkkiQ3mdBjFIvlpL

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks