Overview

overview

10

Static

static

4812463b5b...c7.dll

windows7-x64

10

4812463b5b...c7.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4812463b5b49cf231a305bb0a5a35b586181efdfc958399632be2e575ab61ec7

  • Size

    387KB

  • Sample

    221011-pgfszadfb7

  • MD5

    463ab728f728eb254b02374748b65230

  • SHA1

    3fc448aa46b99b54dbe6e445ab18114a8d57c6b7

  • SHA256

    4812463b5b49cf231a305bb0a5a35b586181efdfc958399632be2e575ab61ec7

  • SHA512

    168db83f510347d4730abf4c8d394232fb93b48a5db663936a7742b939ec29573bcaa7e813a0f5b787a9760adac9e8c023730fa31663681f0a85f1cef67ca083

  • SSDEEP

    12288:OuM4nc11eju169PkNROaHrmtccN4aEEUGTtVO:m0jr9PkopEEUGpk

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      4812463b5b49cf231a305bb0a5a35b586181efdfc958399632be2e575ab61ec7

    • Size

      387KB

    • MD5

      463ab728f728eb254b02374748b65230

    • SHA1

      3fc448aa46b99b54dbe6e445ab18114a8d57c6b7

    • SHA256

      4812463b5b49cf231a305bb0a5a35b586181efdfc958399632be2e575ab61ec7

    • SHA512

      168db83f510347d4730abf4c8d394232fb93b48a5db663936a7742b939ec29573bcaa7e813a0f5b787a9760adac9e8c023730fa31663681f0a85f1cef67ca083

    • SSDEEP

      12288:OuM4nc11eju169PkNROaHrmtccN4aEEUGTtVO:m0jr9PkopEEUGpk

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks