General

  • Target

    2024-05-04_406387f8b09b94ffc20ec3e3b4a78f41_bkransomware_ramnit

  • Size

    3.7MB

  • MD5

    406387f8b09b94ffc20ec3e3b4a78f41

  • SHA1

    26444f3c671c2e43223bc3bb81336685cc84fd90

  • SHA256

    30d8a12c15bbb30131c59004b1cc2e7188bde98398f9338794245560b0ac7a95

  • SHA512

    26178211aa5e33210dc3caecf07bcde4ec643282c717f9bd8b9cfc7d08558a31b3824f5056b4f9b1a4b0b7a1417bf936dc10ddbc2a33fd2062e177774e901cd2

  • SSDEEP

    98304:In8lqLAW7WdUJvWjMxztKTXYhDPMEDIGNQbu/:In8l7auK0EDIGYu/

Score
10/10

Malware Config

Signatures

  • Detects executables packed with VMProtect. 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-04_406387f8b09b94ffc20ec3e3b4a78f41_bkransomware_ramnit
    .exe windows:5 windows x86 arch:x86

    5b3bc56593b1bb0533274ea4dffad8ae


    Headers

    Imports

    Sections