Overview

overview

10

Static

static

568d69fb13...72.dll

windows7-x64

10

568d69fb13...72.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    568d69fb132f4ba57ecc54f8ca65bad3f86ce0cfcff3b73852cce4534b995872

  • Size

    508KB

  • Sample

    221003-x89t5acgaq

  • MD5

    4bff7ecf05034fcf73bd6abe9c53ee60

  • SHA1

    51d90d62028b93331cdf1423a68163f0ca0864a0

  • SHA256

    568d69fb132f4ba57ecc54f8ca65bad3f86ce0cfcff3b73852cce4534b995872

  • SHA512

    9adc34301873b47b85f60364bb95307c447a469770c81e1dead4985f45f664fa8f43b3f9f6c951930c5b325c825b28363677baa0d0f7c9e3ce3e179eb50bb40d

  • SSDEEP

    6144:RmhmIvfkQH6AI4H1XIZfpZbUQ/Fkx7NCcLFqwd6Xv6LzpR9r2Zqa3a9:R7Ivfk2HuFkHCcL4w4/6ntruqya

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      568d69fb132f4ba57ecc54f8ca65bad3f86ce0cfcff3b73852cce4534b995872

    • Size

      508KB

    • MD5

      4bff7ecf05034fcf73bd6abe9c53ee60

    • SHA1

      51d90d62028b93331cdf1423a68163f0ca0864a0

    • SHA256

      568d69fb132f4ba57ecc54f8ca65bad3f86ce0cfcff3b73852cce4534b995872

    • SHA512

      9adc34301873b47b85f60364bb95307c447a469770c81e1dead4985f45f664fa8f43b3f9f6c951930c5b325c825b28363677baa0d0f7c9e3ce3e179eb50bb40d

    • SSDEEP

      6144:RmhmIvfkQH6AI4H1XIZfpZbUQ/Fkx7NCcLFqwd6Xv6LzpR9r2Zqa3a9:R7Ivfk2HuFkHCcL4w4/6ntruqya

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks