General

  • Target

    3542f306efc661768c8f5ae9853317c5063af0ba651ffa2f9a2a4535f798d187

  • Size

    117KB

  • Sample

    240314-xa1hssbg6v

  • MD5

    ab8ed05437d1c83b9bc447a3de1d36b8

  • SHA1

    10edda9cab0dee706955a680bc91eb44e8ae62c6

  • SHA256

    3542f306efc661768c8f5ae9853317c5063af0ba651ffa2f9a2a4535f798d187

  • SHA512

    f937fcdf75bb525d7045e4cf5eed102990fd1efd81cc296c7a8f4e0bc941d3111d58f9613e34977d32996a6e409b88b492dc3f87780b364d480f81c16bd6aa11

  • SSDEEP

    1536:1vSuF/gmdQ1xMQe89KqJLgcvEGrPhLM9WDxOFHaw1PKIFHwAMWoaGCxBLmnLIjSX:1LFXtQL4qGcvEGPhLtD4HhZvQA00jtLK

Malware Config

Targets

    • Target

      3542f306efc661768c8f5ae9853317c5063af0ba651ffa2f9a2a4535f798d187

    • Size

      117KB

    • MD5

      ab8ed05437d1c83b9bc447a3de1d36b8

    • SHA1

      10edda9cab0dee706955a680bc91eb44e8ae62c6

    • SHA256

      3542f306efc661768c8f5ae9853317c5063af0ba651ffa2f9a2a4535f798d187

    • SHA512

      f937fcdf75bb525d7045e4cf5eed102990fd1efd81cc296c7a8f4e0bc941d3111d58f9613e34977d32996a6e409b88b492dc3f87780b364d480f81c16bd6aa11

    • SSDEEP

      1536:1vSuF/gmdQ1xMQe89KqJLgcvEGrPhLM9WDxOFHaw1PKIFHwAMWoaGCxBLmnLIjSX:1LFXtQL4qGcvEGPhLtD4HhZvQA00jtLK

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks