General

  • Target

    9fa583c23d43daf79d6fe63dd603b399.bin

  • Size

    130KB

  • Sample

    240613-cgbg2azhnd

  • MD5

    9fa583c23d43daf79d6fe63dd603b399

  • SHA1

    2e5464a281a58fae38b276361ac92b55bf0f4717

  • SHA256

    fe61a42bb07417b330b08ac1bfea2cac3c1bb9d237f0e6930a59eb0d88d8e2f1

  • SHA512

    10bed4b821edfb01ef4f5646b0fccddd92181339872c50faa6d0e20c0e01cd1e6457de13a9b45e4f0d1a3d91eb5ce2c875a86aefcd92b1c3731b814219dd7a31

  • SSDEEP

    3072:nHch5V5vlyfkMY+BES09JXAnyrZalI+YQ:815osMYod+X3oI+YQ

Malware Config

Targets

    • Target

      9fa583c23d43daf79d6fe63dd603b399.bin

    • Size

      130KB

    • MD5

      9fa583c23d43daf79d6fe63dd603b399

    • SHA1

      2e5464a281a58fae38b276361ac92b55bf0f4717

    • SHA256

      fe61a42bb07417b330b08ac1bfea2cac3c1bb9d237f0e6930a59eb0d88d8e2f1

    • SHA512

      10bed4b821edfb01ef4f5646b0fccddd92181339872c50faa6d0e20c0e01cd1e6457de13a9b45e4f0d1a3d91eb5ce2c875a86aefcd92b1c3731b814219dd7a31

    • SSDEEP

      3072:nHch5V5vlyfkMY+BES09JXAnyrZalI+YQ:815osMYod+X3oI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks