Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e8617478199895ce265feb19ff938eaeb195c5751190fe034092d6c12bee1c34N

  • Size

    65KB

  • Sample

    240927-wh3gpatapp

  • MD5

    425d153dd998d24be8e9061f34c1a380

  • SHA1

    0ad1b971c8669997acd409e09534d6ba00f4e6e4

  • SHA256

    e8617478199895ce265feb19ff938eaeb195c5751190fe034092d6c12bee1c34

  • SHA512

    8762966a6c863910bd8a232b0263633ef7c8a6c614d5c44dfb6007083a4478fdb46277848d7e256956d045f91824cb4e08ed53e6b6c83f1fb83b7de369ab39bf

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxij:ymb3NkkiQ3mdBjF0y7kbA

Malware Config

Targets

    • Target

      e8617478199895ce265feb19ff938eaeb195c5751190fe034092d6c12bee1c34N

    • Size

      65KB

    • MD5

      425d153dd998d24be8e9061f34c1a380

    • SHA1

      0ad1b971c8669997acd409e09534d6ba00f4e6e4

    • SHA256

      e8617478199895ce265feb19ff938eaeb195c5751190fe034092d6c12bee1c34

    • SHA512

      8762966a6c863910bd8a232b0263633ef7c8a6c614d5c44dfb6007083a4478fdb46277848d7e256956d045f91824cb4e08ed53e6b6c83f1fb83b7de369ab39bf

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxij:ymb3NkkiQ3mdBjF0y7kbA

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks