Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a7861517756489f45119cd9f4969ba3bb5b2e28dfbbc81e0d16d7dfed1e7ef81

  • Size

    69KB

  • Sample

    241009-cc6glswbjf

  • MD5

    b1feb290557e45a4d35598c75282706a

  • SHA1

    1734e81a47e0c29d45b591421551625c0c46e3c4

  • SHA256

    a7861517756489f45119cd9f4969ba3bb5b2e28dfbbc81e0d16d7dfed1e7ef81

  • SHA512

    73b9b15319d762ac3a0237cb4b561d9a256da751e695c2e6bdbc694650a3878f03eabec164aeb5b2d04a7407e33fd7b3a49829ad67d52927ece25b7d6606cc26

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIoAcPD:ymb3NkkiQ3mdBjFIsIVcL

Malware Config

Targets

    • Target

      a7861517756489f45119cd9f4969ba3bb5b2e28dfbbc81e0d16d7dfed1e7ef81

    • Size

      69KB

    • MD5

      b1feb290557e45a4d35598c75282706a

    • SHA1

      1734e81a47e0c29d45b591421551625c0c46e3c4

    • SHA256

      a7861517756489f45119cd9f4969ba3bb5b2e28dfbbc81e0d16d7dfed1e7ef81

    • SHA512

      73b9b15319d762ac3a0237cb4b561d9a256da751e695c2e6bdbc694650a3878f03eabec164aeb5b2d04a7407e33fd7b3a49829ad67d52927ece25b7d6606cc26

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIoAcPD:ymb3NkkiQ3mdBjFIsIVcL

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks