Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

6a63e4d586...28.dll

windows7-x64

10

6a63e4d586...28.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6a63e4d5864ac984259adb396ca5defaf6d89de16ed8fde4f69868c04dd1d728

  • Size

    65KB

  • Sample

    221020-pr1acsdhd4

  • MD5

    902ae1896177c1644298daf4678eb690

  • SHA1

    df6a82c6a28792d487a72e39f3f1d5c14ef7601c

  • SHA256

    6a63e4d5864ac984259adb396ca5defaf6d89de16ed8fde4f69868c04dd1d728

  • SHA512

    b43197e9b012104989e3e809efa143a4423b9697a51584ab3dedcbe24da32a7dadca0b018eab26366c442b95ebe2948ade4e632230a0f0c31d578579264bf5ab

  • SSDEEP

    1536:kMT4R27g9fGVwx1q3TkhOg5gfzd3JMLDvRieBL8mI64Ynh1:kQ4Ug9foY2bd3e/Ris8A7

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      6a63e4d5864ac984259adb396ca5defaf6d89de16ed8fde4f69868c04dd1d728

    • Size

      65KB

    • MD5

      902ae1896177c1644298daf4678eb690

    • SHA1

      df6a82c6a28792d487a72e39f3f1d5c14ef7601c

    • SHA256

      6a63e4d5864ac984259adb396ca5defaf6d89de16ed8fde4f69868c04dd1d728

    • SHA512

      b43197e9b012104989e3e809efa143a4423b9697a51584ab3dedcbe24da32a7dadca0b018eab26366c442b95ebe2948ade4e632230a0f0c31d578579264bf5ab

    • SSDEEP

      1536:kMT4R27g9fGVwx1q3TkhOg5gfzd3JMLDvRieBL8mI64Ynh1:kQ4Ug9foY2bd3e/Ris8A7

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks