General

  • Target

    3260d05b6d860de1a73ce95f42e152e1b996846497a9ce8324f202b286bda6eeN

  • Size

    132KB

  • Sample

    241005-gfmwwssgnf

  • MD5

    fda2c471d0bc34c63db2090e1b186cc0

  • SHA1

    953a62993aa97fed0b4e474a50ee9adf06689707

  • SHA256

    3260d05b6d860de1a73ce95f42e152e1b996846497a9ce8324f202b286bda6ee

  • SHA512

    b94b736c13a414b18f25d86a81276ea57b8485a953d07a208b297e77f9226a6b2748c296fc72be32975e77f9f2e2ddbcf28a2b2e03875789547a62b61e5a4318

  • SSDEEP

    1536:R2o6nwzfqmUSa4Ndg+VCrbDdJF5mepY1ur6EMmNNmY4JDzwm:Mo6nwLqrSa4I+VCPt8qY1w6MQY0Dzz

Malware Config

Targets

    • Target

      3260d05b6d860de1a73ce95f42e152e1b996846497a9ce8324f202b286bda6eeN

    • Size

      132KB

    • MD5

      fda2c471d0bc34c63db2090e1b186cc0

    • SHA1

      953a62993aa97fed0b4e474a50ee9adf06689707

    • SHA256

      3260d05b6d860de1a73ce95f42e152e1b996846497a9ce8324f202b286bda6ee

    • SHA512

      b94b736c13a414b18f25d86a81276ea57b8485a953d07a208b297e77f9226a6b2748c296fc72be32975e77f9f2e2ddbcf28a2b2e03875789547a62b61e5a4318

    • SSDEEP

      1536:R2o6nwzfqmUSa4Ndg+VCrbDdJF5mepY1ur6EMmNNmY4JDzwm:Mo6nwLqrSa4I+VCPt8qY1w6MQY0Dzz

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks