ursnif_rm3 | c03f0ab451000aa4799772f609653d690d60ca68adbcb9b3c1f3eed26d075ff4 | Triage

Submit
Reports

Overview

overview

Static

static

B7Ai1.exe

windows7_x64

B7Ai1.exe

windows10_x64

1

Sharing

General

Target

B7Ai1.exe
Size

326KB
Sample

200521-36p5g8v96s
MD5

bf793bccc14cb7fc28c567eff08f7ea3
SHA1

2d1d514e181ef557bd71f7986f401f7a52d567f8
SHA256

c03f0ab451000aa4799772f609653d690d60ca68adbcb9b3c1f3eed26d075ff4
SHA512

06aa9f46b152e8d00c39dcdb65b4661b9f705f5f1b39c3abfb432dde8ab2d253c306d3cac5fe5ecbae6a6ec73e2a4930a7ca16848447f5e1bc8b1a551fe801cc

Score

10^/10

ursnif_rm3 banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

B7Ai1.exe

Resource

win7v200430

banker trojan ursnif_rm3

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

B7Ai1.exe

Resource

win10v200430

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  B7Ai1.exe
- Size
  
  326KB
- MD5
  
  bf793bccc14cb7fc28c567eff08f7ea3
- SHA1
  
  2d1d514e181ef557bd71f7986f401f7a52d567f8
- SHA256
  
  c03f0ab451000aa4799772f609653d690d60ca68adbcb9b3c1f3eed26d075ff4
- SHA512
  
  06aa9f46b152e8d00c39dcdb65b4661b9f705f5f1b39c3abfb432dde8ab2d253c306d3cac5fe5ecbae6a6ec73e2a4930a7ca16848447f5e1bc8b1a551fe801cc
Score

10^/10

banker trojan ursnif_rm3
- Ursnif RM3
  A heavily modified version of Ursnif discovered in the wild.
  banker trojan ursnif_rm3
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bankertrojanursnif_rm3

behavioral2

© 2018-2024

Terms | Privacy