Overview

overview

10

Static

static

3

2a1ca62311...9N.dll

windows7-x64

10

2a1ca62311...9N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a1ca62311fc416144f081e1b79fcb1cca40eb6da24de9916d6f90095440bf79N.exe

  • Size

    240KB

  • Sample

    241230-zlc8raxrcl

  • MD5

    4c7e8e6b0b27576220989a77779b20c0

  • SHA1

    3bfb438b0b65340eb5d86b6799cf8a87fc4215c6

  • SHA256

    2a1ca62311fc416144f081e1b79fcb1cca40eb6da24de9916d6f90095440bf79

  • SHA512

    c8540474d1029d61328d9cafec601bf33672f84fd2cfb9c3940a036346a1294fc2ac9142b15c4d9d79fcfc38ed7b222eacb005321c966e6137920ccdd3309538

  • SSDEEP

    3072:43Z4B+8x2fCFIpcLy1n5lB7GrDWwqrlK4tb1sA622USAz3y184D:43KB+8A6FecLq1BwytF6DYC11D

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      2a1ca62311fc416144f081e1b79fcb1cca40eb6da24de9916d6f90095440bf79N.exe

    • Size

      240KB

    • MD5

      4c7e8e6b0b27576220989a77779b20c0

    • SHA1

      3bfb438b0b65340eb5d86b6799cf8a87fc4215c6

    • SHA256

      2a1ca62311fc416144f081e1b79fcb1cca40eb6da24de9916d6f90095440bf79

    • SHA512

      c8540474d1029d61328d9cafec601bf33672f84fd2cfb9c3940a036346a1294fc2ac9142b15c4d9d79fcfc38ed7b222eacb005321c966e6137920ccdd3309538

    • SSDEEP

      3072:43Z4B+8x2fCFIpcLy1n5lB7GrDWwqrlK4tb1sA622USAz3y184D:43KB+8A6FecLq1BwytF6DYC11D

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks