Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7d00ffa54690f4174f1ebdb4fac792c4e32b3cfb1ab2ab0ddb01eb7e0d9bd36eN

  • Size

    333KB

  • Sample

    241005-qpz29atfkp

  • MD5

    5e91f6bce69652115c4f7547d9437a60

  • SHA1

    bedb645e6348ed24ac2bc99cf89a5c84014b7fe9

  • SHA256

    7d00ffa54690f4174f1ebdb4fac792c4e32b3cfb1ab2ab0ddb01eb7e0d9bd36e

  • SHA512

    2beedb7ebb7d6b6338a8fdae4aa32d28591b9b076045bc6121fdb5436457b4e92a6b58e67574f7457111103d509eacc2b73c2fdac3a988e24694d5b7f5b64c03

  • SSDEEP

    6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhp:F7Tc8JdSjylh2b77BoTMA9gX59sTsuTZ

Malware Config

Targets

    • Target

      7d00ffa54690f4174f1ebdb4fac792c4e32b3cfb1ab2ab0ddb01eb7e0d9bd36eN

    • Size

      333KB

    • MD5

      5e91f6bce69652115c4f7547d9437a60

    • SHA1

      bedb645e6348ed24ac2bc99cf89a5c84014b7fe9

    • SHA256

      7d00ffa54690f4174f1ebdb4fac792c4e32b3cfb1ab2ab0ddb01eb7e0d9bd36e

    • SHA512

      2beedb7ebb7d6b6338a8fdae4aa32d28591b9b076045bc6121fdb5436457b4e92a6b58e67574f7457111103d509eacc2b73c2fdac3a988e24694d5b7f5b64c03

    • SSDEEP

      6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhp:F7Tc8JdSjylh2b77BoTMA9gX59sTsuTZ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks