Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d0256c99b310ee7c25447ef1eb73ac10N.exe

  • Size

    329KB

  • Sample

    240907-mv6v7szfpp

  • MD5

    d0256c99b310ee7c25447ef1eb73ac10

  • SHA1

    aa20d67155b117e94249f1c874da91cb4720dd74

  • SHA256

    db1027406930420f5e94ecf2d0fc1bc2f467681638605ab694d8ed65ea04918e

  • SHA512

    a9d54a6c775e98f032286f1b35e38fc4f2509d5e3455eaa3c88c43cd467646188c4dca8b7aab187b8e83636228505e32b2069a07de35dbcfb1b7dd9bf8b9de99

  • SSDEEP

    6144:vcm4FmowdHoStJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tQ:94wFHoStJdSjylh2b77BoTMA9gX59sTo

Malware Config

Targets

    • Target

      d0256c99b310ee7c25447ef1eb73ac10N.exe

    • Size

      329KB

    • MD5

      d0256c99b310ee7c25447ef1eb73ac10

    • SHA1

      aa20d67155b117e94249f1c874da91cb4720dd74

    • SHA256

      db1027406930420f5e94ecf2d0fc1bc2f467681638605ab694d8ed65ea04918e

    • SHA512

      a9d54a6c775e98f032286f1b35e38fc4f2509d5e3455eaa3c88c43cd467646188c4dca8b7aab187b8e83636228505e32b2069a07de35dbcfb1b7dd9bf8b9de99

    • SSDEEP

      6144:vcm4FmowdHoStJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tQ:94wFHoStJdSjylh2b77BoTMA9gX59sTo

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks