Overview

overview

10

Static

static

d5bcbfbaa6...d0.exe

windows7-x64

10

d5bcbfbaa6...d0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d5bcbfbaa6d1963aa54214614b1064d79e8fd8f89ac0d41d161d4c18ab3164d0

  • Size

    240KB

  • Sample

    221121-mcskvsab3x

  • MD5

    31c9e13c1fe5b4471275bdff6eb2a53e

  • SHA1

    90b212a984d7c5920167aad190453080426a5c13

  • SHA256

    d5bcbfbaa6d1963aa54214614b1064d79e8fd8f89ac0d41d161d4c18ab3164d0

  • SHA512

    bb35ceaa20f6b4e49020e1f428bab77b2ad5bb3951d58a979fe7728b395fc98c67a8e727a79a991e4cbc80c58cdd67d7449bcd8b231822826b2905b3e25b4988

  • SSDEEP

    3072:hkAwuzhjdRmSZiAv4QZiY8l5NtvyVrVCq9ToMjKebfd6ndRYa4RwH//c:xwch/7PQQZ5k57viV9Tkgd6H+Rf

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      d5bcbfbaa6d1963aa54214614b1064d79e8fd8f89ac0d41d161d4c18ab3164d0

    • Size

      240KB

    • MD5

      31c9e13c1fe5b4471275bdff6eb2a53e

    • SHA1

      90b212a984d7c5920167aad190453080426a5c13

    • SHA256

      d5bcbfbaa6d1963aa54214614b1064d79e8fd8f89ac0d41d161d4c18ab3164d0

    • SHA512

      bb35ceaa20f6b4e49020e1f428bab77b2ad5bb3951d58a979fe7728b395fc98c67a8e727a79a991e4cbc80c58cdd67d7449bcd8b231822826b2905b3e25b4988

    • SSDEEP

      3072:hkAwuzhjdRmSZiAv4QZiY8l5NtvyVrVCq9ToMjKebfd6ndRYa4RwH//c:xwch/7PQQZ5k57viV9Tkgd6H+Rf

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks