Overview

overview

10

Static

static

3

61843100f5...6N.dll

windows7-x64

10

61843100f5...6N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61843100f540ea0ffc3aee0acbe7a38b191a6068ef55f4c88af45267f9cd4096N.exe

  • Size

    300KB

  • Sample

    250101-ac4xnswpcs

  • MD5

    26c7062d743af471972a2b061f189400

  • SHA1

    3bf5ed70b567ce780f69cb988bd2178dcfede085

  • SHA256

    61843100f540ea0ffc3aee0acbe7a38b191a6068ef55f4c88af45267f9cd4096

  • SHA512

    7df8fd8f4698594e18fcd4c16218129845cf000510fa467c5ec7ea49ac83e5f4a087d583c37b87dea0ea5b72c7d1862a517a35eba433c245c3261afc7035c9ae

  • SSDEEP

    6144:luJpajNliihoAIWOpF0L4twv1+jnqwoyfmr49okkKXNXHGE:lOuCihoAFOpFe4t41+Xwr4hkK92

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      61843100f540ea0ffc3aee0acbe7a38b191a6068ef55f4c88af45267f9cd4096N.exe

    • Size

      300KB

    • MD5

      26c7062d743af471972a2b061f189400

    • SHA1

      3bf5ed70b567ce780f69cb988bd2178dcfede085

    • SHA256

      61843100f540ea0ffc3aee0acbe7a38b191a6068ef55f4c88af45267f9cd4096

    • SHA512

      7df8fd8f4698594e18fcd4c16218129845cf000510fa467c5ec7ea49ac83e5f4a087d583c37b87dea0ea5b72c7d1862a517a35eba433c245c3261afc7035c9ae

    • SSDEEP

      6144:luJpajNliihoAIWOpF0L4twv1+jnqwoyfmr49okkKXNXHGE:lOuCihoAFOpFe4t41+Xwr4hkK92

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks