Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d8bf68c8878f51869ea1c5a78d9af1d0N

  • Size

    367KB

  • Sample

    240914-ydfhgasbmj

  • MD5

    d8bf68c8878f51869ea1c5a78d9af1d0

  • SHA1

    40fec6897909f897924aa9bb1585a4a912073107

  • SHA256

    a8c79012856b2ba2e4d5f8df3ac740890f87119a1c4c8d4448a49ba00ef58c81

  • SHA512

    7f1d8aaed10862c1f9dbefe2b7f9ee3bd72d659e2edc3c2bba2fdb07237916161398e591f9012a4095bf3df7c11d1ca661fac490933a5633fbd2d27c50d8e5cc

  • SSDEEP

    6144:9cm4FmowdHoSdSyEAxyx/ZrTTr4qIMgE8+:/4wFHoSQuxy3rTXIM18+

Malware Config

Targets

    • Target

      d8bf68c8878f51869ea1c5a78d9af1d0N

    • Size

      367KB

    • MD5

      d8bf68c8878f51869ea1c5a78d9af1d0

    • SHA1

      40fec6897909f897924aa9bb1585a4a912073107

    • SHA256

      a8c79012856b2ba2e4d5f8df3ac740890f87119a1c4c8d4448a49ba00ef58c81

    • SHA512

      7f1d8aaed10862c1f9dbefe2b7f9ee3bd72d659e2edc3c2bba2fdb07237916161398e591f9012a4095bf3df7c11d1ca661fac490933a5633fbd2d27c50d8e5cc

    • SSDEEP

      6144:9cm4FmowdHoSdSyEAxyx/ZrTTr4qIMgE8+:/4wFHoSQuxy3rTXIM18+

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks