Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3102d2b1579244e3a14d73747bfa01139f0493af1ee471ab10d0bc7bca581d96N.exe

  • Size

    66KB

  • Sample

    241130-fp8z2stnds

  • MD5

    0c8535cb9f7a6c49d176d0a2bb466650

  • SHA1

    73b6d4f2a09888ed363b87e7b6b0823d0302ac8c

  • SHA256

    3102d2b1579244e3a14d73747bfa01139f0493af1ee471ab10d0bc7bca581d96

  • SHA512

    a0bedadf9905fb04b30e191671718ab8b74b96f27a2e3e20730922c312c8cd9210f1b6d7e1a0f279e71643c274de71957cfc21e3795a8482dd9a14846c6ef611

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxeQ:ymb3NkkiQ3mdBjF0y7kbUQ

Malware Config

Targets

    • Target

      3102d2b1579244e3a14d73747bfa01139f0493af1ee471ab10d0bc7bca581d96N.exe

    • Size

      66KB

    • MD5

      0c8535cb9f7a6c49d176d0a2bb466650

    • SHA1

      73b6d4f2a09888ed363b87e7b6b0823d0302ac8c

    • SHA256

      3102d2b1579244e3a14d73747bfa01139f0493af1ee471ab10d0bc7bca581d96

    • SHA512

      a0bedadf9905fb04b30e191671718ab8b74b96f27a2e3e20730922c312c8cd9210f1b6d7e1a0f279e71643c274de71957cfc21e3795a8482dd9a14846c6ef611

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxeQ:ymb3NkkiQ3mdBjF0y7kbUQ

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks