General

  • Target

    f43d94993c286933988d5474093d1fcf6f60311b0c3b8a0c3cff20499d1e16e4N.exe

  • Size

    265KB

  • Sample

    241217-2ax5ws1qam

  • MD5

    4e4b28563658f3c6470af216f13bca40

  • SHA1

    3da6a9e888b1f5aa023d8066d2bec9c71633f677

  • SHA256

    f43d94993c286933988d5474093d1fcf6f60311b0c3b8a0c3cff20499d1e16e4

  • SHA512

    bd110e3c1b1d0e847c92ed871c6ef0715082f829452a120589fde160974574fe07a620e49a32d1b80962167df9d3e980f2fbae02ce9afad4e5d50cee91fe2084

  • SSDEEP

    3072:0Y4UBFIq/C3gYvtYtJoVwdHKKNuvpduV8d4i/3pb5kueEe8cRXgM26bHgEZkvhrT:PHbtXujuDg3VqueEyEGHPk5d13Hrn

Malware Config

Targets

    • Target

      f43d94993c286933988d5474093d1fcf6f60311b0c3b8a0c3cff20499d1e16e4N.exe

    • Size

      265KB

    • MD5

      4e4b28563658f3c6470af216f13bca40

    • SHA1

      3da6a9e888b1f5aa023d8066d2bec9c71633f677

    • SHA256

      f43d94993c286933988d5474093d1fcf6f60311b0c3b8a0c3cff20499d1e16e4

    • SHA512

      bd110e3c1b1d0e847c92ed871c6ef0715082f829452a120589fde160974574fe07a620e49a32d1b80962167df9d3e980f2fbae02ce9afad4e5d50cee91fe2084

    • SSDEEP

      3072:0Y4UBFIq/C3gYvtYtJoVwdHKKNuvpduV8d4i/3pb5kueEe8cRXgM26bHgEZkvhrT:PHbtXujuDg3VqueEyEGHPk5d13Hrn

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks