Overview

overview

10

Static

static

1bde2c5360...03.dll

windows7-x64

10

1bde2c5360...03.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1bde2c53608ec7397a17f6121494de8c60cd15977a4551604a4a3248a580a503

  • Size

    320KB

  • Sample

    221011-pkhfzaeagj

  • MD5

    70d4b4e5124e7389f58cd06cf8122560

  • SHA1

    2c0a3e2b9308d566ee1aa980411fbc638d69ac91

  • SHA256

    1bde2c53608ec7397a17f6121494de8c60cd15977a4551604a4a3248a580a503

  • SHA512

    6ac81ef39edc6c22463e8bc9794de3c4f44dddbad9a74fedcec37a98bdb7eba1e77646f236ba8ce0f8543ec1ec195e0d5662f78412e4719481b830d9f75eb37a

  • SSDEEP

    6144:pZ63NXMNfAgU5KsOegqeTnpAarJsDhoEX4bowNIMGRH6vKa:S3NBzgqet9rmDhoEIkwSRHUK

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      1bde2c53608ec7397a17f6121494de8c60cd15977a4551604a4a3248a580a503

    • Size

      320KB

    • MD5

      70d4b4e5124e7389f58cd06cf8122560

    • SHA1

      2c0a3e2b9308d566ee1aa980411fbc638d69ac91

    • SHA256

      1bde2c53608ec7397a17f6121494de8c60cd15977a4551604a4a3248a580a503

    • SHA512

      6ac81ef39edc6c22463e8bc9794de3c4f44dddbad9a74fedcec37a98bdb7eba1e77646f236ba8ce0f8543ec1ec195e0d5662f78412e4719481b830d9f75eb37a

    • SSDEEP

      6144:pZ63NXMNfAgU5KsOegqeTnpAarJsDhoEX4bowNIMGRH6vKa:S3NBzgqet9rmDhoEIkwSRHUK

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks