Overview

overview

10

Static

static

3

70598f6db3...4N.dll

windows7-x64

10

70598f6db3...4N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    70598f6db3031e6fe3748c3ad3b76ae8b38247eb92cd170ddabd993d70bbf564N

  • Size

    220KB

  • Sample

    241111-ph9sfaykdx

  • MD5

    3962ccc3fc2d1fbe17603af57ad73330

  • SHA1

    3d7598b4d697807262bf56057e444109ad8cd178

  • SHA256

    70598f6db3031e6fe3748c3ad3b76ae8b38247eb92cd170ddabd993d70bbf564

  • SHA512

    b07ff61ce0d416bb5e0d6e15854b1620ee1b0beb25ef432afd3ce214745e4e115f03bcc6dc334bf463c92f4adceae0c3e900f011f67024b302290a6df4d6ec43

  • SSDEEP

    3072:P4vsEahcJAy45zlcEkKE8Ag0FuT0tBzeK8QaEt6yvXw8Sdjva1NiJ:P4taDpLkKdAOU9VBw8aba

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      70598f6db3031e6fe3748c3ad3b76ae8b38247eb92cd170ddabd993d70bbf564N

    • Size

      220KB

    • MD5

      3962ccc3fc2d1fbe17603af57ad73330

    • SHA1

      3d7598b4d697807262bf56057e444109ad8cd178

    • SHA256

      70598f6db3031e6fe3748c3ad3b76ae8b38247eb92cd170ddabd993d70bbf564

    • SHA512

      b07ff61ce0d416bb5e0d6e15854b1620ee1b0beb25ef432afd3ce214745e4e115f03bcc6dc334bf463c92f4adceae0c3e900f011f67024b302290a6df4d6ec43

    • SSDEEP

      3072:P4vsEahcJAy45zlcEkKE8Ag0FuT0tBzeK8QaEt6yvXw8Sdjva1NiJ:P4taDpLkKdAOU9VBw8aba

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks