Overview

overview

10

Static

static

3

2024-05-22...it.exe

windows7-x64

10

2024-05-22...it.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-22_3f210900dbb68a27d7786c100f96dc1a_icedid_ramnit

  • Size

    216KB

  • Sample

    240522-cx1rvshf2x

  • MD5

    3f210900dbb68a27d7786c100f96dc1a

  • SHA1

    49f5c6f15694ab7e9460d9e9b50366d54c56aade

  • SHA256

    10857b6a1c70abc6a4c5fb5400b12f83ffaae17f2f370d78f39faad2b513a4fd

  • SHA512

    881f435ad4940d035c5f4025d9fc8464f267ffe682bece86fb64c62529cd2e5270be4516a3a7ccee67f3ffa6fd952e6cad77f3f96ca8d01157e666c4a62f4879

  • SSDEEP

    3072:/GgQuVatNC3SV00YfttQbdFle9BQdVSo4rhoSlsEi8vBeawFGGBjMv:egQuKa0WgUro4rEEik1wEmA

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      2024-05-22_3f210900dbb68a27d7786c100f96dc1a_icedid_ramnit

    • Size

      216KB

    • MD5

      3f210900dbb68a27d7786c100f96dc1a

    • SHA1

      49f5c6f15694ab7e9460d9e9b50366d54c56aade

    • SHA256

      10857b6a1c70abc6a4c5fb5400b12f83ffaae17f2f370d78f39faad2b513a4fd

    • SHA512

      881f435ad4940d035c5f4025d9fc8464f267ffe682bece86fb64c62529cd2e5270be4516a3a7ccee67f3ffa6fd952e6cad77f3f96ca8d01157e666c4a62f4879

    • SSDEEP

      3072:/GgQuVatNC3SV00YfttQbdFle9BQdVSo4rhoSlsEi8vBeawFGGBjMv:egQuKa0WgUro4rEEik1wEmA

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks