Overview

overview

10

Static

static

3

a3a0279b47...8N.dll

windows7-x64

10

a3a0279b47...8N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a3a0279b47cf0c47c6f62c267adee86c49cd36ad24b8e4d95552397e5d2aad98N.exe

  • Size

    124KB

  • Sample

    241226-r6h1qsykcq

  • MD5

    f354cf407d385c972fae6e51d666fdc0

  • SHA1

    b35965420b25ef5e59ff8a41d6fdfcb08a5edde4

  • SHA256

    a3a0279b47cf0c47c6f62c267adee86c49cd36ad24b8e4d95552397e5d2aad98

  • SHA512

    40df2f255043c5252f77c1f9eacb08e7696fd4ac209f5b1a2e72845877b3aaca710d7e8cb27ce5d1042a44ad28c113b3f25b85198b3d520af0be4f1258f2ce69

  • SSDEEP

    3072:Fj6tJY+M7VmKeZ88Dkj7oR2SqwKJXtf5DGyVBQwIY6X4oL:FzcvZNDkYR2SqwK/AyVBQ9RIw

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      a3a0279b47cf0c47c6f62c267adee86c49cd36ad24b8e4d95552397e5d2aad98N.exe

    • Size

      124KB

    • MD5

      f354cf407d385c972fae6e51d666fdc0

    • SHA1

      b35965420b25ef5e59ff8a41d6fdfcb08a5edde4

    • SHA256

      a3a0279b47cf0c47c6f62c267adee86c49cd36ad24b8e4d95552397e5d2aad98

    • SHA512

      40df2f255043c5252f77c1f9eacb08e7696fd4ac209f5b1a2e72845877b3aaca710d7e8cb27ce5d1042a44ad28c113b3f25b85198b3d520af0be4f1258f2ce69

    • SSDEEP

      3072:Fj6tJY+M7VmKeZ88Dkj7oR2SqwKJXtf5DGyVBQwIY6X4oL:FzcvZNDkYR2SqwK/AyVBQ9RIw

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks