Triage | Malware sandboxing report by Hatching Triage

Sharing

General

Target

aefb7dd011f66f2b84a4f016716db0450cfcda8452343806c2addb44fda84aa2
Size

163KB
Sample

230129-mj8knacg9z
MD5

84d784948a197cb2165bdcba889323ef
SHA1

23bf0be9fa44b942d5827b73917f1b8e64bff31d
SHA256

aefb7dd011f66f2b84a4f016716db0450cfcda8452343806c2addb44fda84aa2
SHA512

7786c8fee3da16d9000f33902e16506dc827f8e66fc98cf55e87eeff3010a77a8c37af769ab2ada6d2feca751bc33fd69099ce3968bdba6ca957aea4307a7dc4
SSDEEP

3072:xP09ePZLDAggJEaffc8OswyqruZTAvxsZ0A/lJQdyOa7aYoBYn0Kn0xn6t:xPkWZLkVK4RmiTAeNzOwaYoB1zA

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Malware Config

Targets

- Target
  
  aefb7dd011f66f2b84a4f016716db0450cfcda8452343806c2addb44fda84aa2
- Size
  
  163KB
- MD5
  
  84d784948a197cb2165bdcba889323ef
- SHA1
  
  23bf0be9fa44b942d5827b73917f1b8e64bff31d
- SHA256
  
  aefb7dd011f66f2b84a4f016716db0450cfcda8452343806c2addb44fda84aa2
- SHA512
  
  7786c8fee3da16d9000f33902e16506dc827f8e66fc98cf55e87eeff3010a77a8c37af769ab2ada6d2feca751bc33fd69099ce3968bdba6ca957aea4307a7dc4
- SSDEEP
  
  3072:xP09ePZLDAggJEaffc8OswyqruZTAvxsZ0A/lJQdyOa7aYoBYn0Kn0xn6t:xPkWZLkVK4RmiTAeNzOwaYoB1zA
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm