Overview

overview

10

Static

static

23207cd300...2e.dll

windows7-x64

10

23207cd300...2e.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    23207cd300dff025154e81967bfd47c969bde6d4a61bf38275a9b718eff97c2e

  • Size

    122KB

  • Sample

    221011-pjx52adgb6

  • MD5

    28686cbc2ab368069fc78e89207346f0

  • SHA1

    6881626c891c5c6b5413d233347e4b2f8c961734

  • SHA256

    23207cd300dff025154e81967bfd47c969bde6d4a61bf38275a9b718eff97c2e

  • SHA512

    75311157d658392f0bd0826630bf110e757e6e369dec129b76dbf4d1c2d8fb0824b4223ba201db0765edb1db20ab8b67a39e1f9aba88b971b760c0e874574c57

  • SSDEEP

    1536:v9enQc4ms9SuP2IKNeROqytpTEhLp0HgZlxbwupgDKa7nm:v6yqeROqytpTEFp0Axbjpw7n

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      23207cd300dff025154e81967bfd47c969bde6d4a61bf38275a9b718eff97c2e

    • Size

      122KB

    • MD5

      28686cbc2ab368069fc78e89207346f0

    • SHA1

      6881626c891c5c6b5413d233347e4b2f8c961734

    • SHA256

      23207cd300dff025154e81967bfd47c969bde6d4a61bf38275a9b718eff97c2e

    • SHA512

      75311157d658392f0bd0826630bf110e757e6e369dec129b76dbf4d1c2d8fb0824b4223ba201db0765edb1db20ab8b67a39e1f9aba88b971b760c0e874574c57

    • SSDEEP

      1536:v9enQc4ms9SuP2IKNeROqytpTEhLp0HgZlxbwupgDKa7nm:v6yqeROqytpTEFp0Axbjpw7n

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks