Overview

overview

10

Static

static

bb0d90b543...e8.dll

windows7-x64

10

bb0d90b543...e8.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bb0d90b5439170ce577c66e656abb4f559f1ad4a908c0aec7f7da030bf936fe8

  • Size

    424KB

  • Sample

    221127-3mckdsce4z

  • MD5

    536abeef91d6f77b37af277f59c88df1

  • SHA1

    9c8253c1292873eaa0c5e9248a9436dc4301c0f3

  • SHA256

    bb0d90b5439170ce577c66e656abb4f559f1ad4a908c0aec7f7da030bf936fe8

  • SHA512

    5b1bf62717530f9520abc7c7373e0a032ecf50dfcb01372420d1d9df424b9baf4cc831a87f8b7c6c2f06bd0b3b3253b0231ad52a86bdf1e256db14911790ab51

  • SSDEEP

    6144:S2sND6Qbi3NetW6++h2NSjPRKZASYLufucpECq0h8RQ:W7aNeM6++h2NSjPRKcLufRF/8R

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      bb0d90b5439170ce577c66e656abb4f559f1ad4a908c0aec7f7da030bf936fe8

    • Size

      424KB

    • MD5

      536abeef91d6f77b37af277f59c88df1

    • SHA1

      9c8253c1292873eaa0c5e9248a9436dc4301c0f3

    • SHA256

      bb0d90b5439170ce577c66e656abb4f559f1ad4a908c0aec7f7da030bf936fe8

    • SHA512

      5b1bf62717530f9520abc7c7373e0a032ecf50dfcb01372420d1d9df424b9baf4cc831a87f8b7c6c2f06bd0b3b3253b0231ad52a86bdf1e256db14911790ab51

    • SSDEEP

      6144:S2sND6Qbi3NetW6++h2NSjPRKZASYLufucpECq0h8RQ:W7aNeM6++h2NSjPRKcLufRF/8R

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks