Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    466e506bdb901c41a6db1bae2dc97a899c8d016aef38e0515d103c2a71a103c5N.exe

  • Size

    254KB

  • Sample

    241219-2t359asper

  • MD5

    ffa4325a3ad4f104ebdb9e41491f29f0

  • SHA1

    8ab87968da4fcc59608bae089b8b81d4cd9c846e

  • SHA256

    466e506bdb901c41a6db1bae2dc97a899c8d016aef38e0515d103c2a71a103c5

  • SHA512

    7605b2b77a642b462d8185c7b46bf4af30f081f85c04cc387e4d3ad0aeeef6b251c7b38e9d4076e0e6d1c102de2c9d369ce06006e534fbd4e25bd6d26126a7b9

  • SSDEEP

    6144:kcm4FmowdHoSphraHcpOaKHpolTjZXvEQo9dfBP/e:y4wFHoS3eFaKHpKT9XvEhdfBP/e

Malware Config

Targets

    • Target

      466e506bdb901c41a6db1bae2dc97a899c8d016aef38e0515d103c2a71a103c5N.exe

    • Size

      254KB

    • MD5

      ffa4325a3ad4f104ebdb9e41491f29f0

    • SHA1

      8ab87968da4fcc59608bae089b8b81d4cd9c846e

    • SHA256

      466e506bdb901c41a6db1bae2dc97a899c8d016aef38e0515d103c2a71a103c5

    • SHA512

      7605b2b77a642b462d8185c7b46bf4af30f081f85c04cc387e4d3ad0aeeef6b251c7b38e9d4076e0e6d1c102de2c9d369ce06006e534fbd4e25bd6d26126a7b9

    • SSDEEP

      6144:kcm4FmowdHoSphraHcpOaKHpolTjZXvEQo9dfBP/e:y4wFHoS3eFaKHpKT9XvEhdfBP/e

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks