Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-10-04_869b8942f58b5bf2e99680c81032f973_icedid

  • Size

    8.9MB

  • Sample

    241004-lg8l7s1ckc

  • MD5

    869b8942f58b5bf2e99680c81032f973

  • SHA1

    6c7ff979f95663ff98d599c4064a31b136e64e91

  • SHA256

    e44e2daf28aa2062979ba2b6935c6f505377c3e84171e25f8ad7c45510000108

  • SHA512

    cda83877cfac8a08e630a938c83fefc044460c876ee8b87df7dc5bd6483a7a70a6164269a5d2ccc4f5ba84af4804710daf9ac8f9b291d28fd3be24e2e368447d

  • SSDEEP

    98304:4ZxEZhNd1sAYY15ZflLRWPnq1adkZYZfc4v6BsVzArOSqeDalc6df:Dj1Z1LfVRH1fYZfc4iBmc9BDalX

Malware Config

Targets

    • Target

      2024-10-04_869b8942f58b5bf2e99680c81032f973_icedid

    • Size

      8.9MB

    • MD5

      869b8942f58b5bf2e99680c81032f973

    • SHA1

      6c7ff979f95663ff98d599c4064a31b136e64e91

    • SHA256

      e44e2daf28aa2062979ba2b6935c6f505377c3e84171e25f8ad7c45510000108

    • SHA512

      cda83877cfac8a08e630a938c83fefc044460c876ee8b87df7dc5bd6483a7a70a6164269a5d2ccc4f5ba84af4804710daf9ac8f9b291d28fd3be24e2e368447d

    • SSDEEP

      98304:4ZxEZhNd1sAYY15ZflLRWPnq1adkZYZfc4v6BsVzArOSqeDalc6df:Dj1Z1LfVRH1fYZfc4iBmc9BDalX

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks