Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eae9dbbc4f0714d30e7a0e99440f86c619205564bd4f47a8328adef3b3d02260.exe

  • Size

    454KB

  • Sample

    241225-3qzjbs1pb1

  • MD5

    24c370f1592c15f02284689804ab6cfe

  • SHA1

    4527344624d7ec793a794a107e1915e7fad7fa95

  • SHA256

    eae9dbbc4f0714d30e7a0e99440f86c619205564bd4f47a8328adef3b3d02260

  • SHA512

    771cffc7ddded9e20fe58c0c8be490d6706aa62651e8d3c9a67ebdb866728b8d3320ca488e9519d54a25684c7c3c1bf9215252516f3385647530209acd844ae5

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeS:q7Tc2NYHUrAwfMp3CDS

Malware Config

Targets

    • Target

      eae9dbbc4f0714d30e7a0e99440f86c619205564bd4f47a8328adef3b3d02260.exe

    • Size

      454KB

    • MD5

      24c370f1592c15f02284689804ab6cfe

    • SHA1

      4527344624d7ec793a794a107e1915e7fad7fa95

    • SHA256

      eae9dbbc4f0714d30e7a0e99440f86c619205564bd4f47a8328adef3b3d02260

    • SHA512

      771cffc7ddded9e20fe58c0c8be490d6706aa62651e8d3c9a67ebdb866728b8d3320ca488e9519d54a25684c7c3c1bf9215252516f3385647530209acd844ae5

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeS:q7Tc2NYHUrAwfMp3CDS

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks