Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9e24ad5032d147257f8028ed085d3566259cabddbc49c5233023710be036cb88

  • Size

    64KB

  • Sample

    240912-aj461s1drf

  • MD5

    9a668fa652ac1a713627c30cd3138ee8

  • SHA1

    b523013488088104ad80804151f2257279ea20f3

  • SHA256

    9e24ad5032d147257f8028ed085d3566259cabddbc49c5233023710be036cb88

  • SHA512

    554bcab275a338d5d4d4d1c541a95ca2457c4ceaca4ee38e26d6d1966674d09c0b9e6d9ad1b8f2baec472faca69253be4ad94792dc3ccc2c48fa5c9f90d88230

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27B1N:ymb3NkkiQ3mdBjFI9cz

Malware Config

Targets

    • Target

      9e24ad5032d147257f8028ed085d3566259cabddbc49c5233023710be036cb88

    • Size

      64KB

    • MD5

      9a668fa652ac1a713627c30cd3138ee8

    • SHA1

      b523013488088104ad80804151f2257279ea20f3

    • SHA256

      9e24ad5032d147257f8028ed085d3566259cabddbc49c5233023710be036cb88

    • SHA512

      554bcab275a338d5d4d4d1c541a95ca2457c4ceaca4ee38e26d6d1966674d09c0b9e6d9ad1b8f2baec472faca69253be4ad94792dc3ccc2c48fa5c9f90d88230

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27B1N:ymb3NkkiQ3mdBjFI9cz

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks