Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a599ee1085ee575689428222304fc280N

  • Size

    230KB

  • Sample

    240908-gve5la1amn

  • MD5

    a599ee1085ee575689428222304fc280

  • SHA1

    a01d4a057661c1181dfdc120456069151ef20770

  • SHA256

    a1c38a68b5bccf29121f4f585c719ffc70d0e1d111a0b0e15184df1a8523c209

  • SHA512

    aebed0e624de3ff226cf3cfc196ee7a6e03ee9c5806e9537b469ee71ba4ceb3b774ef726b64ace6cb042585398c416fae69fbdf1d80f04d325b639ebd681a859

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31x4xLn/c1fu:n3C9BRo7MlrWKo+lxKk1fu

Malware Config

Targets

    • Target

      a599ee1085ee575689428222304fc280N

    • Size

      230KB

    • MD5

      a599ee1085ee575689428222304fc280

    • SHA1

      a01d4a057661c1181dfdc120456069151ef20770

    • SHA256

      a1c38a68b5bccf29121f4f585c719ffc70d0e1d111a0b0e15184df1a8523c209

    • SHA512

      aebed0e624de3ff226cf3cfc196ee7a6e03ee9c5806e9537b469ee71ba4ceb3b774ef726b64ace6cb042585398c416fae69fbdf1d80f04d325b639ebd681a859

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31x4xLn/c1fu:n3C9BRo7MlrWKo+lxKk1fu

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks