Overview

overview

10

Static

static

c282ea903a...38.dll

windows7-x64

10

c282ea903a...38.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c282ea903a888862859402be14097d733a0372333a08cc7aeaf70d1154d1fb38

  • Size

    133KB

  • Sample

    221030-22ykqseaf7

  • MD5

    917f0e69b205fc7f16f51107e42d9350

  • SHA1

    2c7089429acf4aedea52ff6c8dbbc2ac06650fdc

  • SHA256

    c282ea903a888862859402be14097d733a0372333a08cc7aeaf70d1154d1fb38

  • SHA512

    374007466475f6cd9a17e55cbee4aef1e9d6e5401d9752fea08db24b01384b9d89c87a79b2e336084b028ccaf274ab0509797ffd4f02a7157a8d2625f8f0bdc2

  • SSDEEP

    3072:iAOIuRZC08lFsc6ALXZZu0edVwFB6yTIshy3pzs:idIu3C0896ALJkVwFB6KIsszs

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      c282ea903a888862859402be14097d733a0372333a08cc7aeaf70d1154d1fb38

    • Size

      133KB

    • MD5

      917f0e69b205fc7f16f51107e42d9350

    • SHA1

      2c7089429acf4aedea52ff6c8dbbc2ac06650fdc

    • SHA256

      c282ea903a888862859402be14097d733a0372333a08cc7aeaf70d1154d1fb38

    • SHA512

      374007466475f6cd9a17e55cbee4aef1e9d6e5401d9752fea08db24b01384b9d89c87a79b2e336084b028ccaf274ab0509797ffd4f02a7157a8d2625f8f0bdc2

    • SSDEEP

      3072:iAOIuRZC08lFsc6ALXZZu0edVwFB6yTIshy3pzs:idIu3C0896ALJkVwFB6KIsszs

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks