Overview

overview

10

Static

static

7830cf5e6d...07.dll

windows7-x64

10

7830cf5e6d...07.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7830cf5e6d6452c6c90887fbfcbf8172574ae668822a3be5ba9e2893a7563f07

  • Size

    96KB

  • Sample

    221011-ae65tafae5

  • MD5

    69b96a1832ade1ea97d60db72947a930

  • SHA1

    f5636d22d552f5795ce6bf260b22d7d5d2a1820d

  • SHA256

    7830cf5e6d6452c6c90887fbfcbf8172574ae668822a3be5ba9e2893a7563f07

  • SHA512

    e98de2ed252578754c93a1a654173d326fe25f9b4172655cf54281988c4c91f65da413d3d1afcaf9137253232edee423bf355cd24658d292b6d44a4b81e2d561

  • SSDEEP

    1536:9ibToqp78CcMC4nqx5RLc0xuqSw9hHM0vZP3t8DlfCTKF1lrdhu:9ibTTp78CcMuLoqZ9hHrhaRaeNu

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      7830cf5e6d6452c6c90887fbfcbf8172574ae668822a3be5ba9e2893a7563f07

    • Size

      96KB

    • MD5

      69b96a1832ade1ea97d60db72947a930

    • SHA1

      f5636d22d552f5795ce6bf260b22d7d5d2a1820d

    • SHA256

      7830cf5e6d6452c6c90887fbfcbf8172574ae668822a3be5ba9e2893a7563f07

    • SHA512

      e98de2ed252578754c93a1a654173d326fe25f9b4172655cf54281988c4c91f65da413d3d1afcaf9137253232edee423bf355cd24658d292b6d44a4b81e2d561

    • SSDEEP

      1536:9ibToqp78CcMC4nqx5RLc0xuqSw9hHM0vZP3t8DlfCTKF1lrdhu:9ibTTp78CcMuLoqZ9hHrhaRaeNu

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks