Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    027b1105ae474cb53c12c847688ff41715ba0b74638000291d7d7d8da9a2891bN

  • Size

    80KB

  • Sample

    240930-dkrh4aygpb

  • MD5

    03195d14c12a391bff77049cc121a240

  • SHA1

    4ebd807db9270f9bf794b1754b76b8d9be14e19d

  • SHA256

    027b1105ae474cb53c12c847688ff41715ba0b74638000291d7d7d8da9a2891b

  • SHA512

    be31a3a395889eaa8e3d7286608ac6204349cdbb685fc736961439032ea842e05751ae94f81140b0dc6c849b876e3094f6929befa1b16337598bdad7b2a247ed

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC5rINFE4yeCH:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCu4T

Malware Config

Targets

    • Target

      027b1105ae474cb53c12c847688ff41715ba0b74638000291d7d7d8da9a2891bN

    • Size

      80KB

    • MD5

      03195d14c12a391bff77049cc121a240

    • SHA1

      4ebd807db9270f9bf794b1754b76b8d9be14e19d

    • SHA256

      027b1105ae474cb53c12c847688ff41715ba0b74638000291d7d7d8da9a2891b

    • SHA512

      be31a3a395889eaa8e3d7286608ac6204349cdbb685fc736961439032ea842e05751ae94f81140b0dc6c849b876e3094f6929befa1b16337598bdad7b2a247ed

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC5rINFE4yeCH:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCu4T

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks