Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

9f4703f71d...99.dll

windows7-x64

10

9f4703f71d...99.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9f4703f71d08d356e543627ade7a346203d1f7829e8b1cd2dd4986e339fcb999

  • Size

    565KB

  • Sample

    221106-znpdssdeek

  • MD5

    06f21ade486bcf5d9b6cee0942533b20

  • SHA1

    3593ab042513f080dd8a5bc1e0d6f896bc849a90

  • SHA256

    9f4703f71d08d356e543627ade7a346203d1f7829e8b1cd2dd4986e339fcb999

  • SHA512

    54aa9f11dedc51c1148bcde45d71386c2766ba79bd3ad4ebee870973957938028c2334ae904aca61d7f803661a518bdd69836798e0444c843518b7c062ee924d

  • SSDEEP

    12288:gN5zT81Z1GVUbfwRflTErY1xDCWGrxoS0bCUWh:g7zuZY+bfwRflTEk1xD7Yfh

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      9f4703f71d08d356e543627ade7a346203d1f7829e8b1cd2dd4986e339fcb999

    • Size

      565KB

    • MD5

      06f21ade486bcf5d9b6cee0942533b20

    • SHA1

      3593ab042513f080dd8a5bc1e0d6f896bc849a90

    • SHA256

      9f4703f71d08d356e543627ade7a346203d1f7829e8b1cd2dd4986e339fcb999

    • SHA512

      54aa9f11dedc51c1148bcde45d71386c2766ba79bd3ad4ebee870973957938028c2334ae904aca61d7f803661a518bdd69836798e0444c843518b7c062ee924d

    • SSDEEP

      12288:gN5zT81Z1GVUbfwRflTErY1xDCWGrxoS0bCUWh:g7zuZY+bfwRflTEk1xD7Yfh

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks