Overview

overview

10

Static

static

6e1d51101a...c6.dll

windows7-x64

10

6e1d51101a...c6.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6e1d51101a5af31366d807b06282a89f8f627c555049a74c9c248d2f168f73c6

  • Size

    148KB

  • Sample

    221030-26znlaecb6

  • MD5

    a1a806ef9e99fe25f8d6798a4c3ce060

  • SHA1

    2102ef8610bc0b3194a7e18c9ac91d9f89bb6735

  • SHA256

    6e1d51101a5af31366d807b06282a89f8f627c555049a74c9c248d2f168f73c6

  • SHA512

    17fa622d0cfb3adbaffe4d1f27a934ae1bff4030a3fb0fd4a6b3feaf974c634b1479a90fb705220363411b896effaed3f15b820e68798ff1acbe6589cddcc484

  • SSDEEP

    3072:Yn4cV8gf2u41Z5tKlm/cbvH7r6wJW2UHYq5peQA:y4y8gOl2I/cbvH7rAJHbpe/

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      6e1d51101a5af31366d807b06282a89f8f627c555049a74c9c248d2f168f73c6

    • Size

      148KB

    • MD5

      a1a806ef9e99fe25f8d6798a4c3ce060

    • SHA1

      2102ef8610bc0b3194a7e18c9ac91d9f89bb6735

    • SHA256

      6e1d51101a5af31366d807b06282a89f8f627c555049a74c9c248d2f168f73c6

    • SHA512

      17fa622d0cfb3adbaffe4d1f27a934ae1bff4030a3fb0fd4a6b3feaf974c634b1479a90fb705220363411b896effaed3f15b820e68798ff1acbe6589cddcc484

    • SSDEEP

      3072:Yn4cV8gf2u41Z5tKlm/cbvH7r6wJW2UHYq5peQA:y4y8gOl2I/cbvH7rAJHbpe/

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks