Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    138ca5d0d004bb9fe69a9e1421b9bf9808ccffcda6cfb35c5ac28a413bc907caN

  • Size

    71KB

  • Sample

    241013-phay4s1bmq

  • MD5

    a9a021d58ca4d986043a6f294e5c6540

  • SHA1

    4c90fbd0e006777e408762a02da2adf0601a8f6d

  • SHA256

    138ca5d0d004bb9fe69a9e1421b9bf9808ccffcda6cfb35c5ac28a413bc907ca

  • SHA512

    ba73e7a01230c229039ae9c8bc9ce8ebf618cc2c84f59800c88e5238ab5f59024cc651b6f69eb3097906f684816e3a581a3c96fa4f03e672ed216b421a01e205

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjD:ymb3NkkiQ3mdBjFI4VT

Malware Config

Targets

    • Target

      138ca5d0d004bb9fe69a9e1421b9bf9808ccffcda6cfb35c5ac28a413bc907caN

    • Size

      71KB

    • MD5

      a9a021d58ca4d986043a6f294e5c6540

    • SHA1

      4c90fbd0e006777e408762a02da2adf0601a8f6d

    • SHA256

      138ca5d0d004bb9fe69a9e1421b9bf9808ccffcda6cfb35c5ac28a413bc907ca

    • SHA512

      ba73e7a01230c229039ae9c8bc9ce8ebf618cc2c84f59800c88e5238ab5f59024cc651b6f69eb3097906f684816e3a581a3c96fa4f03e672ed216b421a01e205

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjD:ymb3NkkiQ3mdBjFI4VT

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks