Overview

overview

10

Static

static

3

7956e2d51b...9f.dll

windows7-x64

10

7956e2d51b...9f.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7956e2d51bea103dc7bf9d16c75efea50996701639432fc8f347ff9a2918799f.exe

  • Size

    358KB

  • Sample

    241114-jtkd2awckg

  • MD5

    9284b582aac8c76f5e3fde3f12b88c97

  • SHA1

    44cb623cb8768e38a6fea4c598b626b84f293f0a

  • SHA256

    7956e2d51bea103dc7bf9d16c75efea50996701639432fc8f347ff9a2918799f

  • SHA512

    d94ae2cde04f417daf0e6526d6dc1ada0a777145a83bf33c89363ce0fe1693115031425a161e23aaa9cbb548e868540aecd169ee93a676e6c9d6e6cc7bbe6cb4

  • SSDEEP

    6144:HeTsmbZ23oVC3L+C8tGap9hKa5nLnGGhuDh:HwbZM+C8Qap90a4kIh

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      7956e2d51bea103dc7bf9d16c75efea50996701639432fc8f347ff9a2918799f.exe

    • Size

      358KB

    • MD5

      9284b582aac8c76f5e3fde3f12b88c97

    • SHA1

      44cb623cb8768e38a6fea4c598b626b84f293f0a

    • SHA256

      7956e2d51bea103dc7bf9d16c75efea50996701639432fc8f347ff9a2918799f

    • SHA512

      d94ae2cde04f417daf0e6526d6dc1ada0a777145a83bf33c89363ce0fe1693115031425a161e23aaa9cbb548e868540aecd169ee93a676e6c9d6e6cc7bbe6cb4

    • SSDEEP

      6144:HeTsmbZ23oVC3L+C8tGap9hKa5nLnGGhuDh:HwbZM+C8Qap90a4kIh

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks