Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    55aca179630121446d7c6232471b1110570eaa9229798d8f160d739595fa7e42N.exe

  • Size

    454KB

  • Sample

    250120-kxfexs1rbr

  • MD5

    3544bd24433cf4d1011efdb9a30bff00

  • SHA1

    a7d91411e8569e1b5de61628ec2964795fffa201

  • SHA256

    55aca179630121446d7c6232471b1110570eaa9229798d8f160d739595fa7e42

  • SHA512

    ecb56028daa1571f194aed33fe5d2ef76de81fad07a90ba9512454f83b26c1314412e2b5e3159e45f8f74421eede94a1ce01c3742b5995864e5be1ba524978ef

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe0:q7Tc2NYHUrAwfMp3CD0

Malware Config

Targets

    • Target

      55aca179630121446d7c6232471b1110570eaa9229798d8f160d739595fa7e42N.exe

    • Size

      454KB

    • MD5

      3544bd24433cf4d1011efdb9a30bff00

    • SHA1

      a7d91411e8569e1b5de61628ec2964795fffa201

    • SHA256

      55aca179630121446d7c6232471b1110570eaa9229798d8f160d739595fa7e42

    • SHA512

      ecb56028daa1571f194aed33fe5d2ef76de81fad07a90ba9512454f83b26c1314412e2b5e3159e45f8f74421eede94a1ce01c3742b5995864e5be1ba524978ef

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe0:q7Tc2NYHUrAwfMp3CD0

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks