Overview

overview

10

Static

static

dd4a9ffdb9...b8.dll

windows7-x64

8

dd4a9ffdb9...b8.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dd4a9ffdb99017d252a920a699278fe2bcbc1750d06d07527d08d273247e3bb8

  • Size

    180KB

  • Sample

    221030-21cxmseaa4

  • MD5

    a16c58cd44787ac65e20a41363220cd3

  • SHA1

    2d0ee095b9b06aa319c24fc84de5229c49e0885d

  • SHA256

    dd4a9ffdb99017d252a920a699278fe2bcbc1750d06d07527d08d273247e3bb8

  • SHA512

    1a24bd70a8db63cea77af053c3c9fa17a4d6af05e6bb049a26af1a84bd1a13719da0b121453af3af5f70673caef3cda28bc6a8e86ff9a90e0d729ff8e06007e3

  • SSDEEP

    3072:5gKKuiX63bw5dNjDh8pWVgTlFIYnHYCqD5ucgQ6e4k2DQ:SKZp3KNjVGvHBqDOHkl

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      dd4a9ffdb99017d252a920a699278fe2bcbc1750d06d07527d08d273247e3bb8

    • Size

      180KB

    • MD5

      a16c58cd44787ac65e20a41363220cd3

    • SHA1

      2d0ee095b9b06aa319c24fc84de5229c49e0885d

    • SHA256

      dd4a9ffdb99017d252a920a699278fe2bcbc1750d06d07527d08d273247e3bb8

    • SHA512

      1a24bd70a8db63cea77af053c3c9fa17a4d6af05e6bb049a26af1a84bd1a13719da0b121453af3af5f70673caef3cda28bc6a8e86ff9a90e0d729ff8e06007e3

    • SSDEEP

      3072:5gKKuiX63bw5dNjDh8pWVgTlFIYnHYCqD5ucgQ6e4k2DQ:SKZp3KNjVGvHBqDOHkl

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks