General

  • Target

    c4749abd52295a78789ed751cb28d568

  • Size

    166KB

  • Sample

    240313-ad6snaeh9w

  • MD5

    c4749abd52295a78789ed751cb28d568

  • SHA1

    75e3cd1ad645ded3cbff80cee40efed417569a25

  • SHA256

    e43a4b7d126dd3ca46c632496250afe055a20d0886090bf96f4772a6b559050b

  • SHA512

    1622713b734869b952d2f2d6fa19709b0f9a07364451e9ae85535867c61782f516cf26a2d0cfe295207f8c654537f3921395c02f546b98d0d443b677fb605171

  • SSDEEP

    3072:uTU56gVxj27Ne4L99ZgyXf9MWebpjMGlDCdru:F4L7vBsGdu

Malware Config

Targets

    • Target

      c4749abd52295a78789ed751cb28d568

    • Size

      166KB

    • MD5

      c4749abd52295a78789ed751cb28d568

    • SHA1

      75e3cd1ad645ded3cbff80cee40efed417569a25

    • SHA256

      e43a4b7d126dd3ca46c632496250afe055a20d0886090bf96f4772a6b559050b

    • SHA512

      1622713b734869b952d2f2d6fa19709b0f9a07364451e9ae85535867c61782f516cf26a2d0cfe295207f8c654537f3921395c02f546b98d0d443b677fb605171

    • SSDEEP

      3072:uTU56gVxj27Ne4L99ZgyXf9MWebpjMGlDCdru:F4L7vBsGdu

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks