General

  • Target

    924ad00fdd8c62af1f077980fdf4e0c81f949d0ff2c16b019e2dc4e39c5e454fN.exe

  • Size

    421KB

  • Sample

    241216-wthxesxpfp

  • MD5

    29138ff9312112acebcdd0d0a7709ba0

  • SHA1

    3d870959f94f3cafd198dcc797c8c3eab4d47be7

  • SHA256

    924ad00fdd8c62af1f077980fdf4e0c81f949d0ff2c16b019e2dc4e39c5e454f

  • SHA512

    83caefec50b7a46812ee98e03f37cc466948311f80a10e31603d9e3b3a522ff1dac565f6ee4406c7f12610cb08ba7893d4b559cd2e3c67806d954f2ae2c62d50

  • SSDEEP

    12288:6j038t/FMldW4QWIK40oScy9gJGjhSo87:H8t/FMldBthSR

Malware Config

Targets

    • Target

      924ad00fdd8c62af1f077980fdf4e0c81f949d0ff2c16b019e2dc4e39c5e454fN.exe

    • Size

      421KB

    • MD5

      29138ff9312112acebcdd0d0a7709ba0

    • SHA1

      3d870959f94f3cafd198dcc797c8c3eab4d47be7

    • SHA256

      924ad00fdd8c62af1f077980fdf4e0c81f949d0ff2c16b019e2dc4e39c5e454f

    • SHA512

      83caefec50b7a46812ee98e03f37cc466948311f80a10e31603d9e3b3a522ff1dac565f6ee4406c7f12610cb08ba7893d4b559cd2e3c67806d954f2ae2c62d50

    • SSDEEP

      12288:6j038t/FMldW4QWIK40oScy9gJGjhSo87:H8t/FMldBthSR

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks