Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    61eb459df28a7d8c922209d1f11702ae443fa9583cd310c283926d831492e4c5N.exe

  • Size

    454KB

  • Sample

    241226-hw41sazjcx

  • MD5

    869e18d4e4bfaff7bf890f739191ffa0

  • SHA1

    94a9de2ba4ffd9d5a7bf596e9ee714cbb7e65b31

  • SHA256

    61eb459df28a7d8c922209d1f11702ae443fa9583cd310c283926d831492e4c5

  • SHA512

    2660b96410abd94b20a6dd156be3c945f140796f0bb99a68b19287cf9f138927b0cc2ebc732a1fa1419b07591ad2be7cb7bbe084220c64efcaf9b3ba394c5b38

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe5:q7Tc2NYHUrAwfMp3CD5

Malware Config

Targets

    • Target

      61eb459df28a7d8c922209d1f11702ae443fa9583cd310c283926d831492e4c5N.exe

    • Size

      454KB

    • MD5

      869e18d4e4bfaff7bf890f739191ffa0

    • SHA1

      94a9de2ba4ffd9d5a7bf596e9ee714cbb7e65b31

    • SHA256

      61eb459df28a7d8c922209d1f11702ae443fa9583cd310c283926d831492e4c5

    • SHA512

      2660b96410abd94b20a6dd156be3c945f140796f0bb99a68b19287cf9f138927b0cc2ebc732a1fa1419b07591ad2be7cb7bbe084220c64efcaf9b3ba394c5b38

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe5:q7Tc2NYHUrAwfMp3CD5

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks