General
-
Target
4b33da871cd87e2d4c489f343b0e5641818b835a0ba238b7392461c0cf27daee
-
Size
10.3MB
-
Sample
240524-hern5agf45
-
MD5
e3abe904593a215b4dae43cdfd2b0d7e
-
SHA1
a24443eb26a99aed2cabb5285789dea8e51eb235
-
SHA256
4b33da871cd87e2d4c489f343b0e5641818b835a0ba238b7392461c0cf27daee
-
SHA512
0640b99cb3996685415fa5673ca087e32d598a8e66f0f87d84497e739730681e1a52811a8a72b7f98718ee55fbb72b2dd6c1b41dce5fb726f8ddd67d60dda617
-
SSDEEP
196608:46F/8qYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKO37w7:TF/8qD4F3e+biSDcQwM8uDuN
Malware Config
Targets
-
-
Target
4b33da871cd87e2d4c489f343b0e5641818b835a0ba238b7392461c0cf27daee
-
Size
10.3MB
-
MD5
e3abe904593a215b4dae43cdfd2b0d7e
-
SHA1
a24443eb26a99aed2cabb5285789dea8e51eb235
-
SHA256
4b33da871cd87e2d4c489f343b0e5641818b835a0ba238b7392461c0cf27daee
-
SHA512
0640b99cb3996685415fa5673ca087e32d598a8e66f0f87d84497e739730681e1a52811a8a72b7f98718ee55fbb72b2dd6c1b41dce5fb726f8ddd67d60dda617
-
SSDEEP
196608:46F/8qYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKO37w7:TF/8qD4F3e+biSDcQwM8uDuN
Score10/10-
Ramnit
Ramnit is a versatile family that holds viruses, worms, and Trojans.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-