Overview

overview

10

Static

static

8

1c165d9be1...60.exe

windows7_x64

10

1c165d9be1...60.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1c165d9be18a68da068520171783744fc850c2da928f3bfc2770255f578ce560

  • Size

    193KB

  • Sample

    210513-wevqtscffx

  • MD5

    687cf3e8b3fa8cc2055332ec26261556

  • SHA1

    f901efbb237de663828d1aa436b51a8f1c789b37

  • SHA256

    1c165d9be18a68da068520171783744fc850c2da928f3bfc2770255f578ce560

  • SHA512

    f6b2ba24e8b8b6ced722ff7e1e46f35cf9bd528f5dbc97f35c1f6423eba8943a34bd439b8be17e8845de4968cfbc1333a72249b50fe5fc80b4cbaff02e907b19

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      1c165d9be18a68da068520171783744fc850c2da928f3bfc2770255f578ce560

    • Size

      193KB

    • MD5

      687cf3e8b3fa8cc2055332ec26261556

    • SHA1

      f901efbb237de663828d1aa436b51a8f1c789b37

    • SHA256

      1c165d9be18a68da068520171783744fc850c2da928f3bfc2770255f578ce560

    • SHA512

      f6b2ba24e8b8b6ced722ff7e1e46f35cf9bd528f5dbc97f35c1f6423eba8943a34bd439b8be17e8845de4968cfbc1333a72249b50fe5fc80b4cbaff02e907b19

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks