Overview

overview

10

Static

static

fd24b7a7eb...92.dll

windows7-x64

10

fd24b7a7eb...92.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    fd24b7a7eb7108c6f512868be669d16bcfb6be59b4ac346ce466bbd00864a992

  • Size

    484KB

  • Sample

    221121-l6afpshg7v

  • MD5

    1edb855905504a9b26e7f1bbac6a2b70

  • SHA1

    3bd99931a2a0e3c5c335896eb807c2b12f92a1a6

  • SHA256

    fd24b7a7eb7108c6f512868be669d16bcfb6be59b4ac346ce466bbd00864a992

  • SHA512

    9d77778f761fed17978e30677a16f00493fe0f5586a91c35c4b0c15c68cff34c33112dbfc18b78d0cace9c22cf8eb14ebc2956c74026d799e6801ea39a2dd056

  • SSDEEP

    6144:EXwHMPawvjUj3iJ8Gakpq9Y+9aqNyXKt2dNlqikmnDZn+W:FHJtiJ1sZt2jbkmD4

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      fd24b7a7eb7108c6f512868be669d16bcfb6be59b4ac346ce466bbd00864a992

    • Size

      484KB

    • MD5

      1edb855905504a9b26e7f1bbac6a2b70

    • SHA1

      3bd99931a2a0e3c5c335896eb807c2b12f92a1a6

    • SHA256

      fd24b7a7eb7108c6f512868be669d16bcfb6be59b4ac346ce466bbd00864a992

    • SHA512

      9d77778f761fed17978e30677a16f00493fe0f5586a91c35c4b0c15c68cff34c33112dbfc18b78d0cace9c22cf8eb14ebc2956c74026d799e6801ea39a2dd056

    • SSDEEP

      6144:EXwHMPawvjUj3iJ8Gakpq9Y+9aqNyXKt2dNlqikmnDZn+W:FHJtiJ1sZt2jbkmD4

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks