Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7a052c606ae90eea024aba8758fe4680N

  • Size

    249KB

  • Sample

    240913-17rtpssfrg

  • MD5

    7a052c606ae90eea024aba8758fe4680

  • SHA1

    de926d61996ea48085a2db620d2c6cefb0ab429b

  • SHA256

    cc7b0d979fb2e790a08744a9183d31406b616998fbc5a23ce298172e25b60e72

  • SHA512

    78faf30e6b7206c3c1e0ac0a9c169f7982bf4303a1ab788f4072fd75fbe10c79190c3ee3003611fd26e0df95ef8834d31e3accd060182c9ea8337c0c071e18d3

  • SSDEEP

    6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRlin:n3C9uD6AUDCa4NYmRMn

Malware Config

Targets

    • Target

      7a052c606ae90eea024aba8758fe4680N

    • Size

      249KB

    • MD5

      7a052c606ae90eea024aba8758fe4680

    • SHA1

      de926d61996ea48085a2db620d2c6cefb0ab429b

    • SHA256

      cc7b0d979fb2e790a08744a9183d31406b616998fbc5a23ce298172e25b60e72

    • SHA512

      78faf30e6b7206c3c1e0ac0a9c169f7982bf4303a1ab788f4072fd75fbe10c79190c3ee3003611fd26e0df95ef8834d31e3accd060182c9ea8337c0c071e18d3

    • SSDEEP

      6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRlin:n3C9uD6AUDCa4NYmRMn

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks