Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

e19ea25740...4N.exe

windows7-x64

10

e19ea25740...4N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e19ea25740dd4d76c979b87d1c92715497beb9a1f5e5b21791e46c04144e0bd4N.exe

  • Size

    458KB

  • Sample

    250217-ca85qawldj

  • MD5

    d0efe12bb1337607cba903280659aa70

  • SHA1

    7cce1a0c110ec286b3cac1405cf4ffaa0284ced1

  • SHA256

    e19ea25740dd4d76c979b87d1c92715497beb9a1f5e5b21791e46c04144e0bd4

  • SHA512

    5c39ac6b2cc1fdb3fc0141424db7362c4800e39951a0a75f7878c458776afc7c48ee91ddbf7ef6120d5edd57b591e5b91c3f09317f3ddc29e770382f4630c7bf

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR2s:q7Tc2NYHUrAwfMp3CDR2s

Score
10/10
blackmoonbankerdiscoverytrojanupx

Malware Config

Targets

    • Target

      e19ea25740dd4d76c979b87d1c92715497beb9a1f5e5b21791e46c04144e0bd4N.exe

    • Size

      458KB

    • MD5

      d0efe12bb1337607cba903280659aa70

    • SHA1

      7cce1a0c110ec286b3cac1405cf4ffaa0284ced1

    • SHA256

      e19ea25740dd4d76c979b87d1c92715497beb9a1f5e5b21791e46c04144e0bd4

    • SHA512

      5c39ac6b2cc1fdb3fc0141424db7362c4800e39951a0a75f7878c458776afc7c48ee91ddbf7ef6120d5edd57b591e5b91c3f09317f3ddc29e770382f4630c7bf

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR2s:q7Tc2NYHUrAwfMp3CDR2s

    Score
    10/10
    blackmoonbankerdiscoverytrojanupx

    • Blackmoon family

      blackmoon

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Downloads MZ/PE file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks