Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d134fa96e96898f8f9ae773760844e9304d97d3224a33a4425e088c1c8e90251

  • Size

    124KB

  • Sample

    240912-cdtt7svgpf

  • MD5

    d76ffc4a45ebdc52e58b8a72354c76d6

  • SHA1

    392a3eac1f5d8cc812d4d222df51c2e1916cf79e

  • SHA256

    d134fa96e96898f8f9ae773760844e9304d97d3224a33a4425e088c1c8e90251

  • SHA512

    e616f2b27b5153b065f0167df2c8835c7c87949b52c22ffafe07230ec8f5f2dcea35301075aa677fa2d7ee6c888c2f0e6a4373207c1cf1a0c60c76279bba5bcb

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFomR7UsyJC+n0GsgcD2:n3C9BRomRph+0GsgcK

Malware Config

Targets

    • Target

      d134fa96e96898f8f9ae773760844e9304d97d3224a33a4425e088c1c8e90251

    • Size

      124KB

    • MD5

      d76ffc4a45ebdc52e58b8a72354c76d6

    • SHA1

      392a3eac1f5d8cc812d4d222df51c2e1916cf79e

    • SHA256

      d134fa96e96898f8f9ae773760844e9304d97d3224a33a4425e088c1c8e90251

    • SHA512

      e616f2b27b5153b065f0167df2c8835c7c87949b52c22ffafe07230ec8f5f2dcea35301075aa677fa2d7ee6c888c2f0e6a4373207c1cf1a0c60c76279bba5bcb

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFomR7UsyJC+n0GsgcD2:n3C9BRomRph+0GsgcK

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks