General

  • Target

    b36fae5d67aa43b1f559b54f562bfdb5fa52728ba59a0ef2799b4541b48b75db

  • Size

    90KB

  • Sample

    220625-xcnl1sfgdm

  • MD5

    38db8d9e754b64e98800285240126840

  • SHA1

    63e342651e8213ac79ec86ab4678963f923dee8b

  • SHA256

    b36fae5d67aa43b1f559b54f562bfdb5fa52728ba59a0ef2799b4541b48b75db

  • SHA512

    a3adf2520973d2a50fa89bd977b3cda890bf429ae6ddd67a2811ed6ea2c60807cf6cec824987fbf623af5a5152f63c13fe61457d473a1895465d35f426b045a4

Malware Config

Targets

    • Target

      b36fae5d67aa43b1f559b54f562bfdb5fa52728ba59a0ef2799b4541b48b75db

    • Size

      90KB

    • MD5

      38db8d9e754b64e98800285240126840

    • SHA1

      63e342651e8213ac79ec86ab4678963f923dee8b

    • SHA256

      b36fae5d67aa43b1f559b54f562bfdb5fa52728ba59a0ef2799b4541b48b75db

    • SHA512

      a3adf2520973d2a50fa89bd977b3cda890bf429ae6ddd67a2811ed6ea2c60807cf6cec824987fbf623af5a5152f63c13fe61457d473a1895465d35f426b045a4

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Tasks