Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7a558039508dd74926e0d353f250b74746a08be59b85f08f5babfa97b43adc92N

  • Size

    454KB

  • Sample

    241009-kp361szhmk

  • MD5

    a91b9ca39012ba1c8cce4b248e5e9240

  • SHA1

    c13892b092fada4d0b4ab25d5d208948d842fd16

  • SHA256

    7a558039508dd74926e0d353f250b74746a08be59b85f08f5babfa97b43adc92

  • SHA512

    2733da6247522a6770a563a997480e68049f81befa61a35c61306bac09d9ac9dd0dd726ccefba432a04a2ef8c3426f1b740ade4383edaf447316ae03732b32e6

  • SSDEEP

    12288:04wFHoSyd0V3eFp3IDvSbh5nPYERM8mXzploE:rd0gFp3lz1/uzploE

Malware Config

Targets

    • Target

      7a558039508dd74926e0d353f250b74746a08be59b85f08f5babfa97b43adc92N

    • Size

      454KB

    • MD5

      a91b9ca39012ba1c8cce4b248e5e9240

    • SHA1

      c13892b092fada4d0b4ab25d5d208948d842fd16

    • SHA256

      7a558039508dd74926e0d353f250b74746a08be59b85f08f5babfa97b43adc92

    • SHA512

      2733da6247522a6770a563a997480e68049f81befa61a35c61306bac09d9ac9dd0dd726ccefba432a04a2ef8c3426f1b740ade4383edaf447316ae03732b32e6

    • SSDEEP

      12288:04wFHoSyd0V3eFp3IDvSbh5nPYERM8mXzploE:rd0gFp3lz1/uzploE

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks