General

  • Target

    5b8cf35d2bb01a0b51b2a6b3e77708822afdb6b662c8ffcac8a203e574e07ac7

  • Size

    364KB

  • Sample

    240326-y7kpaabe29

  • MD5

    3c2372d7fc1fb55d2a24227592c1e571

  • SHA1

    6f62063278dbcfd5b3e5397331d1432059214af8

  • SHA256

    5b8cf35d2bb01a0b51b2a6b3e77708822afdb6b662c8ffcac8a203e574e07ac7

  • SHA512

    a405ea373628d879c5ab956d19d740f19be6764aaecf60ce7ec48549a62db7d1cab5e555160669cf48f06f8e721b46771c93ad3d3779a635c3a23feb11f673e7

  • SSDEEP

    6144:Hf0Gn8tufnXvFMIbOti27ANsl11zYSEuYiuWYMvnk7Md6u4YQTmn:Hf0jEfjbSi27ANU1BEWIsk7Md6n5g

Malware Config

Targets

    • Target

      5b8cf35d2bb01a0b51b2a6b3e77708822afdb6b662c8ffcac8a203e574e07ac7

    • Size

      364KB

    • MD5

      3c2372d7fc1fb55d2a24227592c1e571

    • SHA1

      6f62063278dbcfd5b3e5397331d1432059214af8

    • SHA256

      5b8cf35d2bb01a0b51b2a6b3e77708822afdb6b662c8ffcac8a203e574e07ac7

    • SHA512

      a405ea373628d879c5ab956d19d740f19be6764aaecf60ce7ec48549a62db7d1cab5e555160669cf48f06f8e721b46771c93ad3d3779a635c3a23feb11f673e7

    • SSDEEP

      6144:Hf0Gn8tufnXvFMIbOti27ANsl11zYSEuYiuWYMvnk7Md6u4YQTmn:Hf0jEfjbSi27ANU1BEWIsk7Md6n5g

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks