Overview

overview

10

Static

static

e96dcc4dc6...3a.exe

windows7_x64

10

e96dcc4dc6...3a.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e96dcc4dc6b2858a1fa4328a818d463dcf5231d96fd5b062f2fdcf879423a03a

  • Size

    1.4MB

  • Sample

    210515-lgvr1bbaae

  • MD5

    006dcdbb1a55d23e8dfb955134a07e2d

  • SHA1

    2081acd3612dc5cc4a1cd3fbc8639eefc31dc597

  • SHA256

    e96dcc4dc6b2858a1fa4328a818d463dcf5231d96fd5b062f2fdcf879423a03a

  • SHA512

    859edaa74dec86f7e3d8beba9d41c42e0c6cd93ea9e440ef235160b7b5ea20b17c8a02e3c52094ff2ba8dd1b58333070954d892d801ac7df857c0d464ac1f9a1

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      e96dcc4dc6b2858a1fa4328a818d463dcf5231d96fd5b062f2fdcf879423a03a

    • Size

      1.4MB

    • MD5

      006dcdbb1a55d23e8dfb955134a07e2d

    • SHA1

      2081acd3612dc5cc4a1cd3fbc8639eefc31dc597

    • SHA256

      e96dcc4dc6b2858a1fa4328a818d463dcf5231d96fd5b062f2fdcf879423a03a

    • SHA512

      859edaa74dec86f7e3d8beba9d41c42e0c6cd93ea9e440ef235160b7b5ea20b17c8a02e3c52094ff2ba8dd1b58333070954d892d801ac7df857c0d464ac1f9a1

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks