Overview

overview

10

Static

static

d06bc59854...a8.exe

windows7-x64

10

d06bc59854...a8.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d06bc598541818e9fb4d5d1f810eced3b3f4b707d737c60f2cbc990b8ab575a8

  • Size

    101KB

  • Sample

    221021-ag6l3acddm

  • MD5

    4d97f32b75bccb84b251af885be55e20

  • SHA1

    ef6a666e48e935d88b7aab1c65d3cb6a281ae02e

  • SHA256

    d06bc598541818e9fb4d5d1f810eced3b3f4b707d737c60f2cbc990b8ab575a8

  • SHA512

    a45d25f37a646eae2403a8bc047d1105e21990291b350327daea66d34c20b8408e4a2fc63476e32329e817b8c442a9f99f2a9145cc880391eb930b106f9dbd26

  • SSDEEP

    3072:PBKwcvdwuxdWikJVqtaXC9TrLnMYPxNNp:PBKwcvdnnt19rnDPb

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      d06bc598541818e9fb4d5d1f810eced3b3f4b707d737c60f2cbc990b8ab575a8

    • Size

      101KB

    • MD5

      4d97f32b75bccb84b251af885be55e20

    • SHA1

      ef6a666e48e935d88b7aab1c65d3cb6a281ae02e

    • SHA256

      d06bc598541818e9fb4d5d1f810eced3b3f4b707d737c60f2cbc990b8ab575a8

    • SHA512

      a45d25f37a646eae2403a8bc047d1105e21990291b350327daea66d34c20b8408e4a2fc63476e32329e817b8c442a9f99f2a9145cc880391eb930b106f9dbd26

    • SSDEEP

      3072:PBKwcvdwuxdWikJVqtaXC9TrLnMYPxNNp:PBKwcvdnnt19rnDPb

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks