Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    720abe70e3ec8ae83a769e5367c8aec23eb5cbfba58d67c450dc57e1b6b93eb1N

  • Size

    201KB

  • Sample

    241001-28kbpavhmq

  • MD5

    05563d6a115ab574dd39807b7d3c9ba0

  • SHA1

    c3fdf1fa0c4541db85708e4f2d999bd1f211a4b2

  • SHA256

    720abe70e3ec8ae83a769e5367c8aec23eb5cbfba58d67c450dc57e1b6b93eb1

  • SHA512

    d1b5e0c75b3f2521f28fe539d1976d9e076f98a66fe279a8df918926fc278895e3a412d2c5435de464e49126358fd6061703c56bdd6c5e8fa8e3e256086e5be6

  • SSDEEP

    3072:ZhOmTsF93UYfwC6GIoutFza6BhOmTsUm82xpi8rY9AABa1JePQKN1hJCDN:Zcm4FmowdHoSha6Bcm4JddW7Y6XJCDN

Malware Config

Targets

    • Target

      720abe70e3ec8ae83a769e5367c8aec23eb5cbfba58d67c450dc57e1b6b93eb1N

    • Size

      201KB

    • MD5

      05563d6a115ab574dd39807b7d3c9ba0

    • SHA1

      c3fdf1fa0c4541db85708e4f2d999bd1f211a4b2

    • SHA256

      720abe70e3ec8ae83a769e5367c8aec23eb5cbfba58d67c450dc57e1b6b93eb1

    • SHA512

      d1b5e0c75b3f2521f28fe539d1976d9e076f98a66fe279a8df918926fc278895e3a412d2c5435de464e49126358fd6061703c56bdd6c5e8fa8e3e256086e5be6

    • SSDEEP

      3072:ZhOmTsF93UYfwC6GIoutFza6BhOmTsUm82xpi8rY9AABa1JePQKN1hJCDN:Zcm4FmowdHoSha6Bcm4JddW7Y6XJCDN

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks