Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    637d90a79bcf421348e02d8abe5e5200N.exe

  • Size

    71KB

  • Sample

    240911-q5rqtatejq

  • MD5

    637d90a79bcf421348e02d8abe5e5200

  • SHA1

    34fae86eba14be7a4a4fd54379998e98a6d1dfda

  • SHA256

    3eddd37a7962fb6d4e6ab24d84a80e81ad2559cee743a97e1c77fcf6c13be6ae

  • SHA512

    cceced0e43da9e74d3c2d449c9c8ff05205c13913a6ed7ad998d6cd8c493edbbf47957b1d44e33d465079a342a024aa01f42fdca89f54fb9c8a56ddd773474c2

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjp:ymb3NkkiQ3mdBjFI4VZ

Malware Config

Targets

    • Target

      637d90a79bcf421348e02d8abe5e5200N.exe

    • Size

      71KB

    • MD5

      637d90a79bcf421348e02d8abe5e5200

    • SHA1

      34fae86eba14be7a4a4fd54379998e98a6d1dfda

    • SHA256

      3eddd37a7962fb6d4e6ab24d84a80e81ad2559cee743a97e1c77fcf6c13be6ae

    • SHA512

      cceced0e43da9e74d3c2d449c9c8ff05205c13913a6ed7ad998d6cd8c493edbbf47957b1d44e33d465079a342a024aa01f42fdca89f54fb9c8a56ddd773474c2

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjp:ymb3NkkiQ3mdBjFI4VZ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks