General

  • Target

    0834e8d5ced0336d83a883bef5a8202dcc70cd3ba6b7697d5f58080230d4cfa4

  • Size

    173KB

  • Sample

    240330-vvncvsae2v

  • MD5

    8d884b2e4482ed9f3f9898dfa274dc45

  • SHA1

    2e96ab2c61f2ac996c1b1b1733502c4e6dbb28b6

  • SHA256

    0834e8d5ced0336d83a883bef5a8202dcc70cd3ba6b7697d5f58080230d4cfa4

  • SHA512

    bf4d90923fdc3658e44b1e1eb8e52de78ae7ac2b9902fa3e7d3326731012492b34b2aefedf3750b2b50ccb61c22a033e3486c3012a995f78e6f8e18facb4c244

  • SSDEEP

    3072:Erkvs4Mz1kCNjqfF8A+BRGcZ5Cb5JabQA6hjye1aONkaPx7aZG:PWNjqfF8+bFA6hjt1aYTta

Malware Config

Targets

    • Target

      0834e8d5ced0336d83a883bef5a8202dcc70cd3ba6b7697d5f58080230d4cfa4

    • Size

      173KB

    • MD5

      8d884b2e4482ed9f3f9898dfa274dc45

    • SHA1

      2e96ab2c61f2ac996c1b1b1733502c4e6dbb28b6

    • SHA256

      0834e8d5ced0336d83a883bef5a8202dcc70cd3ba6b7697d5f58080230d4cfa4

    • SHA512

      bf4d90923fdc3658e44b1e1eb8e52de78ae7ac2b9902fa3e7d3326731012492b34b2aefedf3750b2b50ccb61c22a033e3486c3012a995f78e6f8e18facb4c244

    • SSDEEP

      3072:Erkvs4Mz1kCNjqfF8A+BRGcZ5Cb5JabQA6hjye1aONkaPx7aZG:PWNjqfF8+bFA6hjt1aYTta

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks