Overview

overview

10

Static

static

8d34337c1b...7e.dll

windows7_x64

10

8d34337c1b...7e.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d34337c1b7f3fa479f4ffbd5de750e59f56d35961481e3331b92a60c8669e7e

  • Size

    793KB

  • Sample

    220625-dqmr4aecb7

  • MD5

    358ecfffc983f647648eaa9e7c7b146c

  • SHA1

    efa46704790e370b0c4a1d313120494bffca3571

  • SHA256

    8d34337c1b7f3fa479f4ffbd5de750e59f56d35961481e3331b92a60c8669e7e

  • SHA512

    b55a8c065b5a87c88bd000d0e68cafd216621c0e297e49975fa6c5612e5dd4e8e8381a800ff0bc89278211a68f0643a00c3f533114dfe951596933a25c4af8ad

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      8d34337c1b7f3fa479f4ffbd5de750e59f56d35961481e3331b92a60c8669e7e

    • Size

      793KB

    • MD5

      358ecfffc983f647648eaa9e7c7b146c

    • SHA1

      efa46704790e370b0c4a1d313120494bffca3571

    • SHA256

      8d34337c1b7f3fa479f4ffbd5de750e59f56d35961481e3331b92a60c8669e7e

    • SHA512

      b55a8c065b5a87c88bd000d0e68cafd216621c0e297e49975fa6c5612e5dd4e8e8381a800ff0bc89278211a68f0643a00c3f533114dfe951596933a25c4af8ad

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks