Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6281c3bd3847542a6dd73c29a6d73d16748848e1c9c60d99e38634b86ae808faN

  • Size

    418KB

  • Sample

    240921-pk8m6asdkr

  • MD5

    4ad438824d278a6a85ac68d0079d10d0

  • SHA1

    a0dc803bc7b73cb775304be6a11fd1417aa9fd05

  • SHA256

    6281c3bd3847542a6dd73c29a6d73d16748848e1c9c60d99e38634b86ae808fa

  • SHA512

    b12be3338ed39e705b4ae4a07d3faade087e0c4d5e58da004a6ff0b04bffe965478325d8f8582c93f6dbad0075468a367668f3b06fa5f4cb71cd64f2e0a7e173

  • SSDEEP

    12288:n3C9ytvngQj4DtvnV9wLn9UTfC8eieJNBNIsYPT:SgdnJUdnV9z

Malware Config

Targets

    • Target

      6281c3bd3847542a6dd73c29a6d73d16748848e1c9c60d99e38634b86ae808faN

    • Size

      418KB

    • MD5

      4ad438824d278a6a85ac68d0079d10d0

    • SHA1

      a0dc803bc7b73cb775304be6a11fd1417aa9fd05

    • SHA256

      6281c3bd3847542a6dd73c29a6d73d16748848e1c9c60d99e38634b86ae808fa

    • SHA512

      b12be3338ed39e705b4ae4a07d3faade087e0c4d5e58da004a6ff0b04bffe965478325d8f8582c93f6dbad0075468a367668f3b06fa5f4cb71cd64f2e0a7e173

    • SSDEEP

      12288:n3C9ytvngQj4DtvnV9wLn9UTfC8eieJNBNIsYPT:SgdnJUdnV9z

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks