General

  • Target

    25d7e41e418b52de15f49605dc2bcf85b287d1598ee009376c62e41e252f64bf

  • Size

    6MB

  • Sample

    231203-st6rpsce37

  • MD5

    79f98c49bc40fd7bfd485076b61f12a5

  • SHA1

    0615c4f50b4d9f4a3bf8bf41b961829e8a3589f1

  • SHA256

    25d7e41e418b52de15f49605dc2bcf85b287d1598ee009376c62e41e252f64bf

  • SHA512

    c73577ef82868109e97c4d22ea2b7b6da078c511ff31163069a1d06f07424879bd4bc6dd14c530eeed76d1f746b0bb9cb3418e0cc6a00e6dfa8ffa70926adf8f

  • SSDEEP

    98304:QNRLx2q4bVReAWuLtEoo6G6vR1NffetjTahCyQXlgWJyNYrPbM+eFVcW5B9rUf4h:QNRgqQuzulKahDQ1bJbMzZUfkuTB8D

Malware Config

Targets

    • Target

      25d7e41e418b52de15f49605dc2bcf85b287d1598ee009376c62e41e252f64bf

    • Size

      6MB

    • MD5

      79f98c49bc40fd7bfd485076b61f12a5

    • SHA1

      0615c4f50b4d9f4a3bf8bf41b961829e8a3589f1

    • SHA256

      25d7e41e418b52de15f49605dc2bcf85b287d1598ee009376c62e41e252f64bf

    • SHA512

      c73577ef82868109e97c4d22ea2b7b6da078c511ff31163069a1d06f07424879bd4bc6dd14c530eeed76d1f746b0bb9cb3418e0cc6a00e6dfa8ffa70926adf8f

    • SSDEEP

      98304:QNRLx2q4bVReAWuLtEoo6G6vR1NffetjTahCyQXlgWJyNYrPbM+eFVcW5B9rUf4h:QNRgqQuzulKahDQ1bJbMzZUfkuTB8D

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix ATT&CK v13

Tasks