Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8d790afbd7117dc2db7f59df25ede17212526262896ed873968f67f9ce596af9.exe

  • Size

    67KB

  • Sample

    241226-xm59tavqdk

  • MD5

    df8b88fb741ef858f4868d7e64e878d5

  • SHA1

    89abebe428318bdc93cafae3f4696da2ed37e873

  • SHA256

    8d790afbd7117dc2db7f59df25ede17212526262896ed873968f67f9ce596af9

  • SHA512

    f98dd9a45af3ce11ae87b70bba0aff668ce62beeca6168703c6847fd84f5bbb3ceac88b16389257efd315eeef66d332513e1778e37e587941df814ce30ef8e6e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxeu:ymb3NkkiQ3mdBjF0y7kbUu

Malware Config

Targets

    • Target

      8d790afbd7117dc2db7f59df25ede17212526262896ed873968f67f9ce596af9.exe

    • Size

      67KB

    • MD5

      df8b88fb741ef858f4868d7e64e878d5

    • SHA1

      89abebe428318bdc93cafae3f4696da2ed37e873

    • SHA256

      8d790afbd7117dc2db7f59df25ede17212526262896ed873968f67f9ce596af9

    • SHA512

      f98dd9a45af3ce11ae87b70bba0aff668ce62beeca6168703c6847fd84f5bbb3ceac88b16389257efd315eeef66d332513e1778e37e587941df814ce30ef8e6e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxeu:ymb3NkkiQ3mdBjF0y7kbUu

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks