Overview

overview

10

Static

static

04c996bc67...d6.dll

windows7-x64

10

04c996bc67...d6.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    04c996bc677a76a690fca50c001e26c4c134697792c48e75daea8d04eb572bd6

  • Size

    120KB

  • Sample

    221106-1f89nscfe2

  • MD5

    0938d279cbc2de377e85ed5f7c70b070

  • SHA1

    b055571a9285d41218cb0bfbb7f98a5cfd589704

  • SHA256

    04c996bc677a76a690fca50c001e26c4c134697792c48e75daea8d04eb572bd6

  • SHA512

    f6830d43ac65cf13557ecbeca13a5c75277b933882e82692c26bb9c718bb1becb00399d7673a5bbd2c82ca26a2eb16a881c15c4ef16aa7d974093e8637e2d799

  • SSDEEP

    1536:P4/D1bfz7D3ShNVu3cAVw2tiqkBhh2yIUeP6v2sVWBDrq1Cqg52V/thfP/kXU64j:iDx3QmcPZ3BhMJcMHtX21thfKOCQ

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      04c996bc677a76a690fca50c001e26c4c134697792c48e75daea8d04eb572bd6

    • Size

      120KB

    • MD5

      0938d279cbc2de377e85ed5f7c70b070

    • SHA1

      b055571a9285d41218cb0bfbb7f98a5cfd589704

    • SHA256

      04c996bc677a76a690fca50c001e26c4c134697792c48e75daea8d04eb572bd6

    • SHA512

      f6830d43ac65cf13557ecbeca13a5c75277b933882e82692c26bb9c718bb1becb00399d7673a5bbd2c82ca26a2eb16a881c15c4ef16aa7d974093e8637e2d799

    • SSDEEP

      1536:P4/D1bfz7D3ShNVu3cAVw2tiqkBhh2yIUeP6v2sVWBDrq1Cqg52V/thfP/kXU64j:iDx3QmcPZ3BhMJcMHtX21thfKOCQ

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks