Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1cfeed31a2...92.dll

windows7-x64

8

1cfeed31a2...92.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1cfeed31a29583193c9ae6477ce9f4e50b86614a9794833e37792989660a1092

  • Size

    408KB

  • Sample

    221106-1cp2maefcr

  • MD5

    073500ec69c090b55df028bb28bc24e0

  • SHA1

    9654bb1883890b822767472ac54dc03791d6ac96

  • SHA256

    1cfeed31a29583193c9ae6477ce9f4e50b86614a9794833e37792989660a1092

  • SHA512

    5065df48ff09066d53b05a2ee714e9572831b4287b96a28306953824bd13eb87c6a29eaeb324afe719b29b04eff864ef9e1c2c991f56a4e587c13fac7464fe09

  • SSDEEP

    6144:N/u6A81l3T4/Db2TcwQGCbA2HiIasZsQeewQeeCQeesQeeKFQeefQeeytPUaYeza:I6A81u7QQGo9iILbtP6YLaYhCmc/Z/

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      1cfeed31a29583193c9ae6477ce9f4e50b86614a9794833e37792989660a1092

    • Size

      408KB

    • MD5

      073500ec69c090b55df028bb28bc24e0

    • SHA1

      9654bb1883890b822767472ac54dc03791d6ac96

    • SHA256

      1cfeed31a29583193c9ae6477ce9f4e50b86614a9794833e37792989660a1092

    • SHA512

      5065df48ff09066d53b05a2ee714e9572831b4287b96a28306953824bd13eb87c6a29eaeb324afe719b29b04eff864ef9e1c2c991f56a4e587c13fac7464fe09

    • SSDEEP

      6144:N/u6A81l3T4/Db2TcwQGCbA2HiIasZsQeewQeeCQeesQeeKFQeefQeeytPUaYeza:I6A81u7QQGo9iILbtP6YLaYhCmc/Z/

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks