Overview

overview

10

Static

static

a12bf0a3cf...32.dll

windows7-x64

8

a12bf0a3cf...32.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a12bf0a3cf2e618c1f39a34ef650449b851bd6ed21ada1b3be1fb801f57db832

  • Size

    144KB

  • Sample

    221123-vkryashc64

  • MD5

    0814cdc2c25c3a140f2c5d3e15eaec9d

  • SHA1

    2ef8fea0f1cf77984d3efa70337492299e56af3e

  • SHA256

    a12bf0a3cf2e618c1f39a34ef650449b851bd6ed21ada1b3be1fb801f57db832

  • SHA512

    a440679703ae200ee8581866411fab21f81fb34bf068be6cc4487b188af72d9597bcbb5748b8c07a9e93a071d60e56049e9c5cba22c7c7becf94e201787725e1

  • SSDEEP

    3072:Bs82mBOIO+j6iZL3oIy/+zJYAKyvE/vb7HDnrE8NgU:B6IO8PfemvSvb7c8uU

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      a12bf0a3cf2e618c1f39a34ef650449b851bd6ed21ada1b3be1fb801f57db832

    • Size

      144KB

    • MD5

      0814cdc2c25c3a140f2c5d3e15eaec9d

    • SHA1

      2ef8fea0f1cf77984d3efa70337492299e56af3e

    • SHA256

      a12bf0a3cf2e618c1f39a34ef650449b851bd6ed21ada1b3be1fb801f57db832

    • SHA512

      a440679703ae200ee8581866411fab21f81fb34bf068be6cc4487b188af72d9597bcbb5748b8c07a9e93a071d60e56049e9c5cba22c7c7becf94e201787725e1

    • SSDEEP

      3072:Bs82mBOIO+j6iZL3oIy/+zJYAKyvE/vb7HDnrE8NgU:B6IO8PfemvSvb7c8uU

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks