Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ce34436056850ed4eeffdb715a390b796839ef1899fb914a9fe7220881576221N.exe

  • Size

    454KB

  • Sample

    241226-w5bx9avkem

  • MD5

    7d4ebd5ae003a4a43d927176ae155a30

  • SHA1

    ab3c5d79e3c40de432f6863224b51537e4a49df4

  • SHA256

    ce34436056850ed4eeffdb715a390b796839ef1899fb914a9fe7220881576221

  • SHA512

    8c137a39072cb1518e48acde3a22b68989d624d96440f0e8e9a76cc12a565ae492a5de1eeca9f52d862160643855d12ac07841ffc36ec51a67955718170b1244

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe3:q7Tc2NYHUrAwfMp3CD3

Malware Config

Targets

    • Target

      ce34436056850ed4eeffdb715a390b796839ef1899fb914a9fe7220881576221N.exe

    • Size

      454KB

    • MD5

      7d4ebd5ae003a4a43d927176ae155a30

    • SHA1

      ab3c5d79e3c40de432f6863224b51537e4a49df4

    • SHA256

      ce34436056850ed4eeffdb715a390b796839ef1899fb914a9fe7220881576221

    • SHA512

      8c137a39072cb1518e48acde3a22b68989d624d96440f0e8e9a76cc12a565ae492a5de1eeca9f52d862160643855d12ac07841ffc36ec51a67955718170b1244

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe3:q7Tc2NYHUrAwfMp3CD3

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks