Overview

overview

10

Static

static

3

4f2fbf9f01...bd.dll

windows7-x64

10

4f2fbf9f01...bd.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4f2fbf9f01b6b68a931b0322e843b6c74a1486605c9a93176afdf12adf0279bd.exe

  • Size

    546KB

  • Sample

    241118-lssp5aypbl

  • MD5

    fc8d3a6f60416147529635365250fe8a

  • SHA1

    577d4433cf3c46b94fb2cfd0c1f08d5a9927b3fe

  • SHA256

    4f2fbf9f01b6b68a931b0322e843b6c74a1486605c9a93176afdf12adf0279bd

  • SHA512

    66504e54ecbc0086f6f59f07c065b7fefa182e0f6a5efd8db3f62f405f82f3ec656fb4ae9dc2d970cd3f54b84ef3f2968d6d71acd4c7e579c21033c0533a0726

  • SSDEEP

    12288:I0L9xEQMKJd/gKVD7u2PqVvqeithARFhO83gQa:XEGzD7uSHeithARnO83gQa

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      4f2fbf9f01b6b68a931b0322e843b6c74a1486605c9a93176afdf12adf0279bd.exe

    • Size

      546KB

    • MD5

      fc8d3a6f60416147529635365250fe8a

    • SHA1

      577d4433cf3c46b94fb2cfd0c1f08d5a9927b3fe

    • SHA256

      4f2fbf9f01b6b68a931b0322e843b6c74a1486605c9a93176afdf12adf0279bd

    • SHA512

      66504e54ecbc0086f6f59f07c065b7fefa182e0f6a5efd8db3f62f405f82f3ec656fb4ae9dc2d970cd3f54b84ef3f2968d6d71acd4c7e579c21033c0533a0726

    • SSDEEP

      12288:I0L9xEQMKJd/gKVD7u2PqVvqeithARFhO83gQa:XEGzD7uSHeithARnO83gQa

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks