Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    375a88bef01a4a3237a62d910b471c4022ac477e53b25a761f4944cbb7b3a69eN

  • Size

    70KB

  • Sample

    241002-nfmpfstanm

  • MD5

    5ef41b873a0d73ab902e390f788ec5d0

  • SHA1

    35dc366a5a453f99d1d95ba2dd00922134534191

  • SHA256

    375a88bef01a4a3237a62d910b471c4022ac477e53b25a761f4944cbb7b3a69e

  • SHA512

    28f109170c6553a9c65728da9a90b1dfc2777cf473c52e782cbc3c2ce2858dc768d739f1ba65f449cf1765b128a14c2f3790bff999e5da949c5403d265758bd0

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfj5h9:ymb3NkkiQ3mdBjFI4V9

Malware Config

Targets

    • Target

      375a88bef01a4a3237a62d910b471c4022ac477e53b25a761f4944cbb7b3a69eN

    • Size

      70KB

    • MD5

      5ef41b873a0d73ab902e390f788ec5d0

    • SHA1

      35dc366a5a453f99d1d95ba2dd00922134534191

    • SHA256

      375a88bef01a4a3237a62d910b471c4022ac477e53b25a761f4944cbb7b3a69e

    • SHA512

      28f109170c6553a9c65728da9a90b1dfc2777cf473c52e782cbc3c2ce2858dc768d739f1ba65f449cf1765b128a14c2f3790bff999e5da949c5403d265758bd0

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfj5h9:ymb3NkkiQ3mdBjFI4V9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks