Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fcc7f07253567f3d24d1b9b37b6fb2176277f235ca191216bb1b533c5ad82752N.exe

  • Size

    454KB

  • Sample

    241226-tw4wka1jdm

  • MD5

    96c6733c872c40739541d6fbc5e13990

  • SHA1

    b16bea653d4caa5f8ff08cb856517f63f5cda651

  • SHA256

    fcc7f07253567f3d24d1b9b37b6fb2176277f235ca191216bb1b533c5ad82752

  • SHA512

    3b9c7389f1aebc8722ef483055c4a11027400aa515cf26d81005433acceaa0e40a7156fda34056bc552d8c202692907f2ab980d6d00bfab5277035e3bf1c0e24

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

Malware Config

Targets

    • Target

      fcc7f07253567f3d24d1b9b37b6fb2176277f235ca191216bb1b533c5ad82752N.exe

    • Size

      454KB

    • MD5

      96c6733c872c40739541d6fbc5e13990

    • SHA1

      b16bea653d4caa5f8ff08cb856517f63f5cda651

    • SHA256

      fcc7f07253567f3d24d1b9b37b6fb2176277f235ca191216bb1b533c5ad82752

    • SHA512

      3b9c7389f1aebc8722ef483055c4a11027400aa515cf26d81005433acceaa0e40a7156fda34056bc552d8c202692907f2ab980d6d00bfab5277035e3bf1c0e24

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks