Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2025-03-21...ys.exe

windows7-x64

10

2025-03-21...ys.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-21_cbbec242d6b1545249f630b7fcc25d36_hacktools_icedid_remcos_rhadamanthys

  • Size

    4.7MB

  • Sample

    250321-j1as6syq14

  • MD5

    cbbec242d6b1545249f630b7fcc25d36

  • SHA1

    ccb20d30d295c91022095547d93ea76ac6365112

  • SHA256

    c54d3e0350251ebb8335816064a82e0e09982aee505a70bc10a5c3d52d00c6ff

  • SHA512

    9e4324b7dcae11f0cf43bbd328fce15b2439112aeefbfcf2eb27cb64e7890cb3b1a592da15c0b5a7e91158fcf4fdb10341cf1e59b663a0eb075f68e8287dadf4

  • SSDEEP

    98304:DwN9V/TKWfxlcswUr+cIJA0QTJfT+E5/un:C9V/TZlv/+cP0QTtyLn

Score
10/10
blackmoonbankerdiscoverytrojan

Malware Config

Targets

    • Target

      2025-03-21_cbbec242d6b1545249f630b7fcc25d36_hacktools_icedid_remcos_rhadamanthys

    • Size

      4.7MB

    • MD5

      cbbec242d6b1545249f630b7fcc25d36

    • SHA1

      ccb20d30d295c91022095547d93ea76ac6365112

    • SHA256

      c54d3e0350251ebb8335816064a82e0e09982aee505a70bc10a5c3d52d00c6ff

    • SHA512

      9e4324b7dcae11f0cf43bbd328fce15b2439112aeefbfcf2eb27cb64e7890cb3b1a592da15c0b5a7e91158fcf4fdb10341cf1e59b663a0eb075f68e8287dadf4

    • SSDEEP

      98304:DwN9V/TKWfxlcswUr+cIJA0QTJfT+E5/un:C9V/TZlv/+cP0QTtyLn

    Score
    10/10
    blackmoonbankerdiscoverytrojan

    • Blackmoon family

      blackmoon

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks