Overview

overview

10

Static

static

488145402e...6e.dll

windows7-x64

10

488145402e...6e.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    488145402e89c375c53d08a131d16d23a969642da5cc183a568856e1e689956e

  • Size

    228KB

  • Sample

    221002-ytqclsggf9

  • MD5

    484011782988bc7b43735a6e9ec69260

  • SHA1

    b95f8387ce8a15895debc9b933094b6442d03002

  • SHA256

    488145402e89c375c53d08a131d16d23a969642da5cc183a568856e1e689956e

  • SHA512

    cf82907f056ea7996fdc6b827ddc76d27d5da96abca4c69355e2335e6487298fd9b235b92f574a33c100d9f5c15e76e6780f7379f30ab59d842fbd16f889c28e

  • SSDEEP

    6144:lcik5hMANZFCl+or+DtRcn1auCrvB/EY:aiCMANml+e8uCrJ/t

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      488145402e89c375c53d08a131d16d23a969642da5cc183a568856e1e689956e

    • Size

      228KB

    • MD5

      484011782988bc7b43735a6e9ec69260

    • SHA1

      b95f8387ce8a15895debc9b933094b6442d03002

    • SHA256

      488145402e89c375c53d08a131d16d23a969642da5cc183a568856e1e689956e

    • SHA512

      cf82907f056ea7996fdc6b827ddc76d27d5da96abca4c69355e2335e6487298fd9b235b92f574a33c100d9f5c15e76e6780f7379f30ab59d842fbd16f889c28e

    • SSDEEP

      6144:lcik5hMANZFCl+or+DtRcn1auCrvB/EY:aiCMANml+e8uCrJ/t

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks