Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    def883baccab371c24fb683e0dc18bbb8f5f6b1d829ffdf79ac1902b3ea38250N.exe

  • Size

    454KB

  • Sample

    250111-hjp14ayrh1

  • MD5

    8e72e30d572d7a12b60cc2440c0aad20

  • SHA1

    70f1b374371bde74e41a36886459e621de18313d

  • SHA256

    def883baccab371c24fb683e0dc18bbb8f5f6b1d829ffdf79ac1902b3ea38250

  • SHA512

    82963a76039a644d49af2b4d42e7d189d10f46859d1e8c88058dce00f777c0de291464768e874edaf1fbc7418835abce1e501b406048ceb4b94121f9f9bf722a

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe/:q7Tc2NYHUrAwfMp3CD/

Malware Config

Targets

    • Target

      def883baccab371c24fb683e0dc18bbb8f5f6b1d829ffdf79ac1902b3ea38250N.exe

    • Size

      454KB

    • MD5

      8e72e30d572d7a12b60cc2440c0aad20

    • SHA1

      70f1b374371bde74e41a36886459e621de18313d

    • SHA256

      def883baccab371c24fb683e0dc18bbb8f5f6b1d829ffdf79ac1902b3ea38250

    • SHA512

      82963a76039a644d49af2b4d42e7d189d10f46859d1e8c88058dce00f777c0de291464768e874edaf1fbc7418835abce1e501b406048ceb4b94121f9f9bf722a

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe/:q7Tc2NYHUrAwfMp3CD/

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks