General

  • Target

    a62396c5b2664d2a9a0bb6fe18e15b282353fb6336bc198699757016ffc6a27c.exe

  • Size

    558KB

  • Sample

    250101-q2exvawra1

  • MD5

    1f7c50d32d596204a81db9ea35dde332

  • SHA1

    8b03955ef7cb83fe583938ca80fca2c406c0dd7e

  • SHA256

    a62396c5b2664d2a9a0bb6fe18e15b282353fb6336bc198699757016ffc6a27c

  • SHA512

    5ac8039dcb992a1d97721b640795d9baf086d0e50b3c85bf99378d6a2f93d7090f28ce5bccf09f5e51427b94cc75d33550d972af90e35b30bb00551e4137c9dc

  • SSDEEP

    12288:zh8fZLyb9PzVMBC/HVMOp4PkxHLCYwZckMQMNzfld1B:z8F+Pzr/Hfp4MIYwZckMQmzfZB

Malware Config

Targets

    • Target

      a62396c5b2664d2a9a0bb6fe18e15b282353fb6336bc198699757016ffc6a27c.exe

    • Size

      558KB

    • MD5

      1f7c50d32d596204a81db9ea35dde332

    • SHA1

      8b03955ef7cb83fe583938ca80fca2c406c0dd7e

    • SHA256

      a62396c5b2664d2a9a0bb6fe18e15b282353fb6336bc198699757016ffc6a27c

    • SHA512

      5ac8039dcb992a1d97721b640795d9baf086d0e50b3c85bf99378d6a2f93d7090f28ce5bccf09f5e51427b94cc75d33550d972af90e35b30bb00551e4137c9dc

    • SSDEEP

      12288:zh8fZLyb9PzVMBC/HVMOp4PkxHLCYwZckMQMNzfld1B:z8F+Pzr/Hfp4MIYwZckMQmzfZB

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.