Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e6c6f9a029b8860176db9731b177a7c6eaa1a1c32665dc77098a64ceef9f5c97N

  • Size

    331KB

  • Sample

    241006-q5yjcsxcjm

  • MD5

    3e8cd6771fcc45660c67d16bf81ddb80

  • SHA1

    94a61af86e74411a44a18858419947d05f21fd38

  • SHA256

    e6c6f9a029b8860176db9731b177a7c6eaa1a1c32665dc77098a64ceef9f5c97

  • SHA512

    240c0ba376755867eb54de0ad0770e960941d4624262c8f141c035fad09eed61c2cb73c5a425d8113c70be9d5cb23fa669992d4195fb47db94a5c6d51aa5b7c3

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeC:R4wFHoSHYHUrAwfMp3CDC

Malware Config

Targets

    • Target

      e6c6f9a029b8860176db9731b177a7c6eaa1a1c32665dc77098a64ceef9f5c97N

    • Size

      331KB

    • MD5

      3e8cd6771fcc45660c67d16bf81ddb80

    • SHA1

      94a61af86e74411a44a18858419947d05f21fd38

    • SHA256

      e6c6f9a029b8860176db9731b177a7c6eaa1a1c32665dc77098a64ceef9f5c97

    • SHA512

      240c0ba376755867eb54de0ad0770e960941d4624262c8f141c035fad09eed61c2cb73c5a425d8113c70be9d5cb23fa669992d4195fb47db94a5c6d51aa5b7c3

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeC:R4wFHoSHYHUrAwfMp3CDC

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks