Overview

overview

10

Static

static

3

f055a8d695...2a.dll

windows7-x64

7

f055a8d695...2a.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f055a8d695c7137f08ccd1926039789599501e59b3b81541e0d21cbb05e1cd2a.exe

  • Size

    444KB

  • Sample

    241218-133qeatpb1

  • MD5

    e33faa1aa23b5541bcad705df1843455

  • SHA1

    07675500d51123843466b064f3b9df9beb168177

  • SHA256

    f055a8d695c7137f08ccd1926039789599501e59b3b81541e0d21cbb05e1cd2a

  • SHA512

    4c4479b0713c3676fa1e65ccfa6c01e3c3924ff4b76a982823df5f419434dd86047825194ee9b73230d24823457a27387d93025c3999d112f57fa8c7754acaf3

  • SSDEEP

    12288:iehnaNPpSVZmNxRCwnwm3W3OHIIf5amBUFCWii:ieh0PpS6NxNnwYeOHX1UgHi

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      f055a8d695c7137f08ccd1926039789599501e59b3b81541e0d21cbb05e1cd2a.exe

    • Size

      444KB

    • MD5

      e33faa1aa23b5541bcad705df1843455

    • SHA1

      07675500d51123843466b064f3b9df9beb168177

    • SHA256

      f055a8d695c7137f08ccd1926039789599501e59b3b81541e0d21cbb05e1cd2a

    • SHA512

      4c4479b0713c3676fa1e65ccfa6c01e3c3924ff4b76a982823df5f419434dd86047825194ee9b73230d24823457a27387d93025c3999d112f57fa8c7754acaf3

    • SSDEEP

      12288:iehnaNPpSVZmNxRCwnwm3W3OHIIf5amBUFCWii:ieh0PpS6NxNnwYeOHX1UgHi

    Score
    10/10
    discoveryramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks