Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0d1ec1b806cc1742419653d61dcf4de5d03cc548ca0eac9190c8a60f3bea8305N

  • Size

    59KB

  • Sample

    241004-rfzksssdpd

  • MD5

    a50d0c8b93ee5501fdab131d957baec0

  • SHA1

    c0c01a3bc75dabdb82bcccdf6a9a4c0c146aad67

  • SHA256

    0d1ec1b806cc1742419653d61dcf4de5d03cc548ca0eac9190c8a60f3bea8305

  • SHA512

    f05de455f218ab8f2a92a5d18f7b6f6af9328de916cad4ea92e0724963c6dd8558e377be21b6272e13da9c28369789b13e25d90965eb64725e813fae9d9da4d9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIgTdx:ymb3NkkiQ3mdBjFIg/

Malware Config

Targets

    • Target

      0d1ec1b806cc1742419653d61dcf4de5d03cc548ca0eac9190c8a60f3bea8305N

    • Size

      59KB

    • MD5

      a50d0c8b93ee5501fdab131d957baec0

    • SHA1

      c0c01a3bc75dabdb82bcccdf6a9a4c0c146aad67

    • SHA256

      0d1ec1b806cc1742419653d61dcf4de5d03cc548ca0eac9190c8a60f3bea8305

    • SHA512

      f05de455f218ab8f2a92a5d18f7b6f6af9328de916cad4ea92e0724963c6dd8558e377be21b6272e13da9c28369789b13e25d90965eb64725e813fae9d9da4d9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIgTdx:ymb3NkkiQ3mdBjFIg/

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks