Overview

overview

10

Static

static

1aac058bef...16.dll

windows7-x64

10

1aac058bef...16.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1aac058bef453403124583ce9765715c5c83bab93ebc1e4481a57a5148eacb16

  • Size

    108KB

  • Sample

    221020-pwvknsebc5

  • MD5

    42cc89c6b504bbcd13077822aec000c0

  • SHA1

    0385ac0a9cf0b5ff27930d8dbc8ac7da304a9dc5

  • SHA256

    1aac058bef453403124583ce9765715c5c83bab93ebc1e4481a57a5148eacb16

  • SHA512

    3fe826c346688fde250c0176acbfd0a2811d50dde9b1261f2715ef8113d15b47a527d379d6963e7496c1423c5ed43c1931c2311e06f17fb6b89d47ae4b28702b

  • SSDEEP

    1536:pYbFLxw4IDT1otFUAvUDou5j7bk6qWNAqHnABYWZIwgl9F2gj6i2GbWRJ9qzn4:ylI1gxUDoupXqYnxWZIwXg+JGbuJIj

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      1aac058bef453403124583ce9765715c5c83bab93ebc1e4481a57a5148eacb16

    • Size

      108KB

    • MD5

      42cc89c6b504bbcd13077822aec000c0

    • SHA1

      0385ac0a9cf0b5ff27930d8dbc8ac7da304a9dc5

    • SHA256

      1aac058bef453403124583ce9765715c5c83bab93ebc1e4481a57a5148eacb16

    • SHA512

      3fe826c346688fde250c0176acbfd0a2811d50dde9b1261f2715ef8113d15b47a527d379d6963e7496c1423c5ed43c1931c2311e06f17fb6b89d47ae4b28702b

    • SSDEEP

      1536:pYbFLxw4IDT1otFUAvUDou5j7bk6qWNAqHnABYWZIwgl9F2gj6i2GbWRJ9qzn4:ylI1gxUDoupXqYnxWZIwXg+JGbuJIj

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks