General

  • Target

    2024-10-04_2d345f9bc85f948b88a7c4e8911a90e6_avoslocker_cobalt-strike_ramnit

  • Size

    335KB

  • Sample

    241004-h9hdya1fmq

  • MD5

    2d345f9bc85f948b88a7c4e8911a90e6

  • SHA1

    2943c7fe8f81f41e29a50b40e3ed00d31e3653b2

  • SHA256

    494f8e83d5ae4a203523b1fbdbffa7f33362fae40cf3a3dd46a804fe451e1ba1

  • SHA512

    57500e4e4e1700baf45544106d5f4b812e089eba6807ca49d680a05cfd4841e5eb7e2562783095df2e696e412827541840a2dce7f61c74dd80be3b065ff30dc0

  • SSDEEP

    6144:EyR2zi7ajvRcGLKZH2FaLw9hH4JwchBLiOOHVgcwn9hruxk:EyR2zi+jvf9hH4JwOxpOHW/9hrb

Malware Config

Targets

    • Target

      2024-10-04_2d345f9bc85f948b88a7c4e8911a90e6_avoslocker_cobalt-strike_ramnit

    • Size

      335KB

    • MD5

      2d345f9bc85f948b88a7c4e8911a90e6

    • SHA1

      2943c7fe8f81f41e29a50b40e3ed00d31e3653b2

    • SHA256

      494f8e83d5ae4a203523b1fbdbffa7f33362fae40cf3a3dd46a804fe451e1ba1

    • SHA512

      57500e4e4e1700baf45544106d5f4b812e089eba6807ca49d680a05cfd4841e5eb7e2562783095df2e696e412827541840a2dce7f61c74dd80be3b065ff30dc0

    • SSDEEP

      6144:EyR2zi7ajvRcGLKZH2FaLw9hH4JwchBLiOOHVgcwn9hruxk:EyR2zi+jvf9hH4JwOxpOHW/9hrb

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks