General

  • Target

    89ab03c259222ee0348360a6d6670d5db5d95da04778747b2ef8563c3bacfdf5N.exe

  • Size

    187KB

  • Sample

    241216-xz5ttayqbp

  • MD5

    6c601b488da0c9055c185ee67d81ae10

  • SHA1

    d4e564ae5c4d899bd52c880c4fbec32642e273a2

  • SHA256

    89ab03c259222ee0348360a6d6670d5db5d95da04778747b2ef8563c3bacfdf5

  • SHA512

    3f2f3907fdb0ef2de08bd8ce774115305639af63afe0f663c196b4bb6afa42b8e54f0d9eef426149b8b1b8b79a603fa708f59d2bd4e7d9ebf01f09f96464bc8b

  • SSDEEP

    3072:jKuoYY+RoatpaNj+FIlYGTuXHHetkqcqvnhzduz:+OY+cjuQTuXHHel/Vgz

Malware Config

Targets

    • Target

      89ab03c259222ee0348360a6d6670d5db5d95da04778747b2ef8563c3bacfdf5N.exe

    • Size

      187KB

    • MD5

      6c601b488da0c9055c185ee67d81ae10

    • SHA1

      d4e564ae5c4d899bd52c880c4fbec32642e273a2

    • SHA256

      89ab03c259222ee0348360a6d6670d5db5d95da04778747b2ef8563c3bacfdf5

    • SHA512

      3f2f3907fdb0ef2de08bd8ce774115305639af63afe0f663c196b4bb6afa42b8e54f0d9eef426149b8b1b8b79a603fa708f59d2bd4e7d9ebf01f09f96464bc8b

    • SSDEEP

      3072:jKuoYY+RoatpaNj+FIlYGTuXHHetkqcqvnhzduz:+OY+cjuQTuXHHel/Vgz

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks