General

  • Target

    e2af923eb604287686987c977bd5b7d85354377ca74c5a002206b647e0738143.exe

  • Size

    188KB

  • Sample

    241218-htfv6sykav

  • MD5

    2828a5c5917e4e8b36da55dc303ab752

  • SHA1

    983ae161d008475fc2d1510bd2ce75e5ad6e9ed5

  • SHA256

    e2af923eb604287686987c977bd5b7d85354377ca74c5a002206b647e0738143

  • SHA512

    cbde1292d66936ad79b89893343417828e45943c22eb04a595dc7c467ca563cb3e4f2f1084cff23b79c9b23c2dd548bab9ab3b8856acc59024e1aacee83c1bc0

  • SSDEEP

    3072:wkk/wxp+etRwew56OxxejSGuBoBp2QzrZHBMtYsIrfy9Qm:zDHA6dj1BrZHutWrfE

Malware Config

Targets

    • Target

      e2af923eb604287686987c977bd5b7d85354377ca74c5a002206b647e0738143.exe

    • Size

      188KB

    • MD5

      2828a5c5917e4e8b36da55dc303ab752

    • SHA1

      983ae161d008475fc2d1510bd2ce75e5ad6e9ed5

    • SHA256

      e2af923eb604287686987c977bd5b7d85354377ca74c5a002206b647e0738143

    • SHA512

      cbde1292d66936ad79b89893343417828e45943c22eb04a595dc7c467ca563cb3e4f2f1084cff23b79c9b23c2dd548bab9ab3b8856acc59024e1aacee83c1bc0

    • SSDEEP

      3072:wkk/wxp+etRwew56OxxejSGuBoBp2QzrZHBMtYsIrfy9Qm:zDHA6dj1BrZHutWrfE

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks