Overview

overview

10

Static

static

0d1f15e79f...a0.dll

windows7-x64

10

0d1f15e79f...a0.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d1f15e79f1d1e8f7757ba06574c76272c30a9664d24c9956214fca174045fa0

  • Size

    151KB

  • Sample

    221002-yw32gsadbm

  • MD5

    46a9e7a515ed9e5460f232aeebfb0b30

  • SHA1

    137af7329dbfd6ae37cc30e7885d83fb36e10590

  • SHA256

    0d1f15e79f1d1e8f7757ba06574c76272c30a9664d24c9956214fca174045fa0

  • SHA512

    55070867822532f2addf5bfaf5c4a64c8a1c6a13e4c74c83e57ced20ca142787adebed39e0e107889bc58b3d7c8f999734ee312cd0433b3a9833872c632fc22c

  • SSDEEP

    3072:91TnY4kclz9sdO/79dVMmXmwJwjifG1r0PeIR/tvpiy5/:fTncQsU/7jVMmXmwJkiu1r8eCtvpiy5

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      0d1f15e79f1d1e8f7757ba06574c76272c30a9664d24c9956214fca174045fa0

    • Size

      151KB

    • MD5

      46a9e7a515ed9e5460f232aeebfb0b30

    • SHA1

      137af7329dbfd6ae37cc30e7885d83fb36e10590

    • SHA256

      0d1f15e79f1d1e8f7757ba06574c76272c30a9664d24c9956214fca174045fa0

    • SHA512

      55070867822532f2addf5bfaf5c4a64c8a1c6a13e4c74c83e57ced20ca142787adebed39e0e107889bc58b3d7c8f999734ee312cd0433b3a9833872c632fc22c

    • SSDEEP

      3072:91TnY4kclz9sdO/79dVMmXmwJwjifG1r0PeIR/tvpiy5/:fTncQsU/7jVMmXmwJkiu1r8eCtvpiy5

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks