Overview

overview

10

Static

static

cd3b084c66...97.dll

windows7-x64

10

cd3b084c66...97.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    cd3b084c669a1fe8c7e455895c7051b5f83f8e82fb626d1b5840092842827f97

  • Size

    144KB

  • Sample

    221002-ym1j1ageb3

  • MD5

    016780d3c23ff6b58985dc1267e77960

  • SHA1

    b60ca11129d0a530e52667f91cd8ac0e79a956e2

  • SHA256

    cd3b084c669a1fe8c7e455895c7051b5f83f8e82fb626d1b5840092842827f97

  • SHA512

    7aa9880557de561f65f7be1cd309d59f7ace31972e1e8bccf08b4842adfe93646367cca9eb25afe239ed7c8c7d18794b88e2fe20f411d0b76f1db2a1e16f5315

  • SSDEEP

    3072:ytvBOI+FQny5R6nG//SdaZwms0CCBK+PxxpHU7EoC2VtAup/E:ytJ/y5R6n+6daZwmBCCBKA1U7jlVtVp/

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      cd3b084c669a1fe8c7e455895c7051b5f83f8e82fb626d1b5840092842827f97

    • Size

      144KB

    • MD5

      016780d3c23ff6b58985dc1267e77960

    • SHA1

      b60ca11129d0a530e52667f91cd8ac0e79a956e2

    • SHA256

      cd3b084c669a1fe8c7e455895c7051b5f83f8e82fb626d1b5840092842827f97

    • SHA512

      7aa9880557de561f65f7be1cd309d59f7ace31972e1e8bccf08b4842adfe93646367cca9eb25afe239ed7c8c7d18794b88e2fe20f411d0b76f1db2a1e16f5315

    • SSDEEP

      3072:ytvBOI+FQny5R6nG//SdaZwms0CCBK+PxxpHU7EoC2VtAup/E:ytJ/y5R6n+6daZwmBCCBKA1U7jlVtVp/

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks