Overview

overview

10

Static

static

7

SkinH_EL.dll

windows7-x64

10

SkinH_EL.dll

windows10-2004-x64

10

无上神�....1.exe

windows7-x64

7

无上神�....1.exe

windows10-2004-x64

7

河源下�...��.url

windows7-x64

1

河源下�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68a3ceb37754335a27ec6d440ad374c6_JaffaCakes118

  • Size

    1.3MB

  • Sample

    240522-zyc4hsgf7t

  • MD5

    68a3ceb37754335a27ec6d440ad374c6

  • SHA1

    2929e71c72bbc00d1960b2de4dcc272edf3cc9bf

  • SHA256

    61bb37dd616d9b0c8ddb0510f9ab47e96b656b965fc6cd9ab0ca81c6fe77c4a6

  • SHA512

    d478a715de9471e388a839acea1c7bf702f44e631453040d4e6746eac159f5231dd70f4548e7dc3af2845a30d416c1a93ada41e4c6daedc2aa9c30a05eb90843

  • SSDEEP

    24576:ToA/HFcxXoW3hEqbkbTTuDBxzLqyxFoOFd1bpiOqz2TqUdo2Q4go4Vkv9:ssHFlYbKTTufz1ToIb9TqUdo2YpkF

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      SkinH_EL.dll

    • Size

      143KB

    • MD5

      8c8388eecb554d3af88eaf0816f38b32

    • SHA1

      18e59a06934f7b90e541aca6b9f2161169b5022f

    • SHA256

      b703bd31565452c6ca1220fb2c3168652ebb18ab34a1a0529b4838c2f4d6fef5

    • SHA512

      82df103667e32ef49b3ba0dc91c02c894adafbf47526f8c00079c9fe35a7ed276c79039cd7d8fe40751dd9150c78713555129fc3846b7d45fb833e3df43bee2a

    • SSDEEP

      3072:x5Np2dlUX0+Cx17F8QRJZKmOK3outKJuKQhT8eAUC:PFwT7SMJMzUoSIulS

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      无上神兵魅影辅助v1.1.exe

    • Size

      1.2MB

    • MD5

      712e590027634bc50d17afce1e02686d

    • SHA1

      ebe9b8cc8797daeb6ea1fd2c8ab90122e747eae4

    • SHA256

      7f6469a71ca872db1b0cf8a560436eda0207d5295d582ab27d6218f35d90a3c9

    • SHA512

      0644d6d0a8c75f9dd172ba3bb9676b6a9933d4f49a328a569df94305fd16d6475057b82a24b436e2ad33b8decff576ebc015430dc016a04cb7f51f0675a4e798

    • SSDEEP

      24576:h0AjuhWaOpUYsitDKfJLcwVkvgq7xTuF+fIziA:6AjuVOVvNKfJAEkvTximIt

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      河源下载站 - 打造齐全的绿色软件家园 - 绿色软件下载.url

    • Size

      216B

    • MD5

      34e996cb2b7276521f864639da2c0d84

    • SHA1

      a95e20b06ee8d884649f3b80489163274fea2017

    • SHA256

      c81c908dff201c6cd53ba51c2379ce6bd4d3c1e00c20b648bcdd3d146a5a88cf

    • SHA512

      2c13f0d1418a6b9153e93cb7075f81dd670e88cd9ea13a9d5d9907ddfd354bf2091c7dcbf13a2bf4e85907420a7b77abbb941886168674cc1c396527a30a97f9

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v13

Tasks