Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    29c0b11ed68f902890fbefe01f24a992a3ea3635f2456b6fe6fc4917c7632cc2N.exe

  • Size

    70KB

  • Sample

    241219-2jc63ssjax

  • MD5

    dbb9016dedae1473846f53fcba748ec0

  • SHA1

    0ba692580139f8bbb8ffca21c0c65ffe2a0b6251

  • SHA256

    29c0b11ed68f902890fbefe01f24a992a3ea3635f2456b6fe6fc4917c7632cc2

  • SHA512

    c48d4eb6a5463f28d7532a2cf572bdcf22d232b40fa01b1c1c8e95b9dd6bbd179891c201924ed336ba9cecdf17e05794696a99b08ee00918bb4bd794ec3be4ae

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIoAcB:ymb3NkkiQ3mdBjFIsIVcB

Malware Config

Targets

    • Target

      29c0b11ed68f902890fbefe01f24a992a3ea3635f2456b6fe6fc4917c7632cc2N.exe

    • Size

      70KB

    • MD5

      dbb9016dedae1473846f53fcba748ec0

    • SHA1

      0ba692580139f8bbb8ffca21c0c65ffe2a0b6251

    • SHA256

      29c0b11ed68f902890fbefe01f24a992a3ea3635f2456b6fe6fc4917c7632cc2

    • SHA512

      c48d4eb6a5463f28d7532a2cf572bdcf22d232b40fa01b1c1c8e95b9dd6bbd179891c201924ed336ba9cecdf17e05794696a99b08ee00918bb4bd794ec3be4ae

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIoAcB:ymb3NkkiQ3mdBjFIsIVcB

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks