Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

BINTANG_MEDAN.dll

windows7-x64

10

BINTANG_MEDAN.dll

windows10-2004-x64

10

KLIK INJEK...NI.exe

windows7-x64

3

KLIK INJEK...NI.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_58e13a2f2465e8ac98730079ced11e50

  • Size

    417KB

  • Sample

    250101-ryctraykfw

  • MD5

    58e13a2f2465e8ac98730079ced11e50

  • SHA1

    123f7ed6df8231ac5230b5ccad40904ad63dd3c6

  • SHA256

    2be17af67e59eeb2e1c18b85736c1c5b02177487c3448b22d8f50836a81de5ea

  • SHA512

    9b3a94b446f96708cc583b730fd41aee34b5e3a196529141e423fe78228d4889c684ae2b5366c572ff0c0a276c1a2ad13f9cc6eda6a7db1cc0ced04f096c265f

  • SSDEEP

    12288:TplrCoh764uSGV2uLKcghVRCbfIlC3hie0jN:VlrCZ8mKZ4THhTa

Score
10/10
ramnitbankerdiscoverypersistencespywarestealertrojanupxworm

Malware Config

Targets

    • Target

      BINTANG_MEDAN.dll

    • Size

      571KB

    • MD5

      1b1791079d8d02fc81f7d7718aeb6e3f

    • SHA1

      2715df39c14dad28f8b08b4fc67d26f3465291ee

    • SHA256

      7c968548f204db947d8cf499ce94f1c1592e8f5f906e938995832381b3b038f5

    • SHA512

      6d55e91d90f06ad010d4880f40363070edd4838381b93dc6267a56eae60b22df7f88ba9fc0ebd814fa2fa8460d52ed18431b1e6e28d7e534addd2a2657577465

    • SSDEEP

      12288:NbEWi6zF2UYRSIDmItwUS6Qt/Itaau2kp+cjFYfrX:5EWLySKtGft/IgMcjujX

    Score
    10/10
    ramnitbankerdiscoverypersistencespywarestealertrojanupxworm

    • Modifies WinLogon for persistence

      persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      KLIK INJEK MANUAL DI SINI.exe

    • Size

      228KB

    • MD5

      26ad4445d16267b465b3d38f06507d42

    • SHA1

      50bf364118dffebb921c9b04d83a296d4bb5d98a

    • SHA256

      5a6b7e5cc8fbc7207d87783ae01fadb7bdbe1a528945efa82c49c35948e875b4

    • SHA512

      db44a98fe3d57f58d3fe451754b3c18cbbeba966f81ff44b0941a198c5c3edc073955a0e839179a8965341ed018295dd6c5f7458970c2dc2dd37f48cbf415718

    • SSDEEP

      3072:ABXCGNJ8z7VRgn/q8RHUBDhcvw7Ve20YENxS7vmEjo2QxcuD7DIATtC9XWhvWfx:AcM8HVyS8Olhcv6VehS7T02ycu3DIA

    Score
    3/10
    discovery
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks