Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b52e80380e15b9aab7cfc06c38aafb76850e775ea25c15d5be2e49e0f95b5c9a

  • Size

    72KB

  • Sample

    241010-a6ke5ayarn

  • MD5

    366778de520f3ba12fe89324217a5d77

  • SHA1

    5ac6cfafe568e64b92e4a9ce734b7babcdef0030

  • SHA256

    b52e80380e15b9aab7cfc06c38aafb76850e775ea25c15d5be2e49e0f95b5c9a

  • SHA512

    6614a436a29a1a1872a218a5a99e794dc26ae017cc7a8ebfe32da17b10ce4f8cb43643ed0a619889047c4ae7f5d76ee49d0c60dbf35d2705af5584cb1dba2b40

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIdiW65OA:ymb3NkkiQ3mdBjFIFdJ8bViW6r

Malware Config

Targets

    • Target

      b52e80380e15b9aab7cfc06c38aafb76850e775ea25c15d5be2e49e0f95b5c9a

    • Size

      72KB

    • MD5

      366778de520f3ba12fe89324217a5d77

    • SHA1

      5ac6cfafe568e64b92e4a9ce734b7babcdef0030

    • SHA256

      b52e80380e15b9aab7cfc06c38aafb76850e775ea25c15d5be2e49e0f95b5c9a

    • SHA512

      6614a436a29a1a1872a218a5a99e794dc26ae017cc7a8ebfe32da17b10ce4f8cb43643ed0a619889047c4ae7f5d76ee49d0c60dbf35d2705af5584cb1dba2b40

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIdiW65OA:ymb3NkkiQ3mdBjFIFdJ8bViW6r

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks