General

  • Target

    b709c7ff171266b05d8242d56cd0496bdb1f2406bb44526e74f445e8a764c29c

  • Size

    260KB

  • Sample

    210516-26f9ehlzk2

  • MD5

    055467c6d6254905484fa72179b94c81

  • SHA1

    02e0e6b226c48e80b0be7adf32a3bb225438f6a5

  • SHA256

    b709c7ff171266b05d8242d56cd0496bdb1f2406bb44526e74f445e8a764c29c

  • SHA512

    9a73bf6c598447a1c2727b6733fcabc385912d0b89d76bab54a70e2a1e03235056f7d3e096022c57881ee6ca6f2fb6c108f75946dfa9265d2b1447b9e522f119

Malware Config

Targets

    • Target

      b709c7ff171266b05d8242d56cd0496bdb1f2406bb44526e74f445e8a764c29c

    • Size

      260KB

    • MD5

      055467c6d6254905484fa72179b94c81

    • SHA1

      02e0e6b226c48e80b0be7adf32a3bb225438f6a5

    • SHA256

      b709c7ff171266b05d8242d56cd0496bdb1f2406bb44526e74f445e8a764c29c

    • SHA512

      9a73bf6c598447a1c2727b6733fcabc385912d0b89d76bab54a70e2a1e03235056f7d3e096022c57881ee6ca6f2fb6c108f75946dfa9265d2b1447b9e522f119

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Tasks