Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0e3c93c8cec3ec3b95d89c44fa3a6e951bcb0f0a21fa6dbff3b69c5bb81df205

  • Size

    4.5MB

  • Sample

    241004-kkpg3aydpg

  • MD5

    b082ab032fce93f5e956c2fbafeea8a6

  • SHA1

    48b3860d55fa426ec0933b05b167ecdb2612e83f

  • SHA256

    0e3c93c8cec3ec3b95d89c44fa3a6e951bcb0f0a21fa6dbff3b69c5bb81df205

  • SHA512

    293e04a76e6b551e5ee69c8198e0db203feb79cff4034d101d95f613ef59a5c44d22489f7a65ed31ade6588b6540fdf0a467726675e0ba6c9bf1a057d9ce6751

  • SSDEEP

    49152:fNIlcFEedDqnroHO8wOZHOlnm9Fib7+Htg9UWjWkX1QpO:fNIqcnsHtvZHdnibqSqv21

Malware Config

Targets

    • Target

      0e3c93c8cec3ec3b95d89c44fa3a6e951bcb0f0a21fa6dbff3b69c5bb81df205

    • Size

      4.5MB

    • MD5

      b082ab032fce93f5e956c2fbafeea8a6

    • SHA1

      48b3860d55fa426ec0933b05b167ecdb2612e83f

    • SHA256

      0e3c93c8cec3ec3b95d89c44fa3a6e951bcb0f0a21fa6dbff3b69c5bb81df205

    • SHA512

      293e04a76e6b551e5ee69c8198e0db203feb79cff4034d101d95f613ef59a5c44d22489f7a65ed31ade6588b6540fdf0a467726675e0ba6c9bf1a057d9ce6751

    • SSDEEP

      49152:fNIlcFEedDqnroHO8wOZHOlnm9Fib7+Htg9UWjWkX1QpO:fNIqcnsHtvZHdnibqSqv21

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks