Overview

overview

10

Static

static

c05f696f49...a4.dll

windows7-x64

10

c05f696f49...a4.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c05f696f49666999663a4255aaf88e5b195eff00225eec8e061fcf5159b6daa4

  • Size

    204KB

  • Sample

    221030-2211vsehfp

  • MD5

    a23304e935675c1227de3ad16531a9b0

  • SHA1

    f12cafe6287a79391e23e366a055a1c1bf6105f2

  • SHA256

    c05f696f49666999663a4255aaf88e5b195eff00225eec8e061fcf5159b6daa4

  • SHA512

    89b20389bcbbbf30efb6c1e7c63c4a4e4fd7e1041ab765d6f8fa83e3f41c4e4fb04f0ec160b5e015aeb760a42c8f7822124e76d7944427d68ab2cde4611062b2

  • SSDEEP

    6144:w4y8gOl216VVVVVVVVVeVVVVD2VVVVVVVVVVVVVVVVVVVR6fg/QwR/Q4EVVVldhU:ly8glK/XnWD

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      c05f696f49666999663a4255aaf88e5b195eff00225eec8e061fcf5159b6daa4

    • Size

      204KB

    • MD5

      a23304e935675c1227de3ad16531a9b0

    • SHA1

      f12cafe6287a79391e23e366a055a1c1bf6105f2

    • SHA256

      c05f696f49666999663a4255aaf88e5b195eff00225eec8e061fcf5159b6daa4

    • SHA512

      89b20389bcbbbf30efb6c1e7c63c4a4e4fd7e1041ab765d6f8fa83e3f41c4e4fb04f0ec160b5e015aeb760a42c8f7822124e76d7944427d68ab2cde4611062b2

    • SSDEEP

      6144:w4y8gOl216VVVVVVVVVeVVVVD2VVVVVVVVVVVVVVVVVVVR6fg/QwR/Q4EVVVldhU:ly8glK/XnWD

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks