Overview

overview

10

Static

static

57a5212fa6...52.dll

windows7-x64

8

57a5212fa6...52.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    57a5212fa68e72c94590736b78571da00984392d23a349b304fcc883c66a8f52

  • Size

    264KB

  • Sample

    221204-csgs7ahb37

  • MD5

    342af1791cfcb71998fa8efc9953e320

  • SHA1

    8298e2467a369f8606826bc7ad5c3096b239aaa2

  • SHA256

    57a5212fa68e72c94590736b78571da00984392d23a349b304fcc883c66a8f52

  • SHA512

    5e3cd46d1e90147eaf8e32bcfde316c6156b6b5f0968c4580383ad69f1a783103608cda5d580be385c6974e392519b693f25e46d46f74bae337bc4d7d09b73e4

  • SSDEEP

    3072:XgKKuiX63bw5dNjDh8pWVgTlFIYn0aqT6RDZkBNf6wl+PF:wKZp3KNjVGv09OUBNSDPF

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      57a5212fa68e72c94590736b78571da00984392d23a349b304fcc883c66a8f52

    • Size

      264KB

    • MD5

      342af1791cfcb71998fa8efc9953e320

    • SHA1

      8298e2467a369f8606826bc7ad5c3096b239aaa2

    • SHA256

      57a5212fa68e72c94590736b78571da00984392d23a349b304fcc883c66a8f52

    • SHA512

      5e3cd46d1e90147eaf8e32bcfde316c6156b6b5f0968c4580383ad69f1a783103608cda5d580be385c6974e392519b693f25e46d46f74bae337bc4d7d09b73e4

    • SSDEEP

      3072:XgKKuiX63bw5dNjDh8pWVgTlFIYn0aqT6RDZkBNf6wl+PF:wKZp3KNjVGv09OUBNSDPF

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks