General

  • Target

    a6b790dde635bbbc9c0b07c74d6d2f67.bin

  • Size

    158KB

  • Sample

    240615-cy141swepc

  • MD5

    a6b790dde635bbbc9c0b07c74d6d2f67

  • SHA1

    405c5e95ad253dc5008e82d588922894933514c9

  • SHA256

    9060b56417d4312f0c9d41363009644cb5e0b57d44f6b6944d31fa3179b84264

  • SHA512

    2360717d62bb1d2bb2541fbe3f9537091016afc3e022f2bcb0f86614df5fb103672c8862cda0e4c280d9ce8eaa772539335376dae53d58ed6a33ba78a65cf089

  • SSDEEP

    3072:i3FC7chcgyfkMY+BES09JXAnyrZalI+YQ:iVC7chcdsMYod+X3oI+YQ

Malware Config

Targets

    • Target

      a6b790dde635bbbc9c0b07c74d6d2f67.bin

    • Size

      158KB

    • MD5

      a6b790dde635bbbc9c0b07c74d6d2f67

    • SHA1

      405c5e95ad253dc5008e82d588922894933514c9

    • SHA256

      9060b56417d4312f0c9d41363009644cb5e0b57d44f6b6944d31fa3179b84264

    • SHA512

      2360717d62bb1d2bb2541fbe3f9537091016afc3e022f2bcb0f86614df5fb103672c8862cda0e4c280d9ce8eaa772539335376dae53d58ed6a33ba78a65cf089

    • SSDEEP

      3072:i3FC7chcgyfkMY+BES09JXAnyrZalI+YQ:iVC7chcdsMYod+X3oI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks