Overview

overview

10

Static

static

17832ed4d4...5f.dll

windows7-x64

8

17832ed4d4...5f.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    17832ed4d42d450f2e8b68ea2ac3608806caf6046dfde1399fa7710381d40e5f

  • Size

    580KB

  • Sample

    221205-qztm8ahh2v

  • MD5

    b721c738cfd4e54a5618416e9589e0d0

  • SHA1

    66ca0f3b40b32aff51ebd8e8ae97f193e1859f96

  • SHA256

    17832ed4d42d450f2e8b68ea2ac3608806caf6046dfde1399fa7710381d40e5f

  • SHA512

    18f78c3a5e0539aa65d487fc292e8fcbfb634a00080bbaf6bf9860c2b673b55c736f319bb304d0b9de96b59b80d9776ea20815b0269f8c8a630edeb641c1220d

  • SSDEEP

    12288:nhpUrEIZJqr1AkBWwNa5R0EYl795/amaX3QXaPKULh90:n/jG01NHXaPn0

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      17832ed4d42d450f2e8b68ea2ac3608806caf6046dfde1399fa7710381d40e5f

    • Size

      580KB

    • MD5

      b721c738cfd4e54a5618416e9589e0d0

    • SHA1

      66ca0f3b40b32aff51ebd8e8ae97f193e1859f96

    • SHA256

      17832ed4d42d450f2e8b68ea2ac3608806caf6046dfde1399fa7710381d40e5f

    • SHA512

      18f78c3a5e0539aa65d487fc292e8fcbfb634a00080bbaf6bf9860c2b673b55c736f319bb304d0b9de96b59b80d9776ea20815b0269f8c8a630edeb641c1220d

    • SSDEEP

      12288:nhpUrEIZJqr1AkBWwNa5R0EYl795/amaX3QXaPKULh90:n/jG01NHXaPn0

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks