Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    62f4662f9909899d9a59cdbb17d1cfdce4138dbe275c75ff87deb01a1c519295

  • Size

    64KB

  • Sample

    241005-1xmf8stgqn

  • MD5

    4948e4ac3dfeee3aa5fc4229541b515b

  • SHA1

    fe19811fe3ff6479a740dea6a52ced6a9ddf730f

  • SHA256

    62f4662f9909899d9a59cdbb17d1cfdce4138dbe275c75ff87deb01a1c519295

  • SHA512

    52db3bc6d8f074668cbf6a1be1f8040fc68ae84285a1c106ed2e3e0276e3bb492a3f45403cb5c712c8faed0a2edfaf877fe9f335470cc8abf8e41fcd11dd716e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27B1k:ymb3NkkiQ3mdBjFI9c6

Malware Config

Targets

    • Target

      62f4662f9909899d9a59cdbb17d1cfdce4138dbe275c75ff87deb01a1c519295

    • Size

      64KB

    • MD5

      4948e4ac3dfeee3aa5fc4229541b515b

    • SHA1

      fe19811fe3ff6479a740dea6a52ced6a9ddf730f

    • SHA256

      62f4662f9909899d9a59cdbb17d1cfdce4138dbe275c75ff87deb01a1c519295

    • SHA512

      52db3bc6d8f074668cbf6a1be1f8040fc68ae84285a1c106ed2e3e0276e3bb492a3f45403cb5c712c8faed0a2edfaf877fe9f335470cc8abf8e41fcd11dd716e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27B1k:ymb3NkkiQ3mdBjFI9c6

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks