General

  • Target

    ec11e1acbe4ec4242fee3f6046366c0658eba7d7e610dd99526edab5dfca5ba8N.exe

  • Size

    558KB

  • Sample

    250101-rqecls1jfl

  • MD5

    b2e9b51d84d265f837b47911471f20c0

  • SHA1

    3bfc4a924d380bf26f5c5846161155b5916306d0

  • SHA256

    ec11e1acbe4ec4242fee3f6046366c0658eba7d7e610dd99526edab5dfca5ba8

  • SHA512

    c7e763c2f8bf06de2487c960fcea4c1baa4a5156d0ae464e818652c897faf36cc58539786fde686127fda405fb90caf56bc1bc6652cdb818d5a69afd947cd0e7

  • SSDEEP

    12288:zh8fZLyb9PzVMBC/HVMOp4PkxHLCYwZckMQMNzfld1Z:z8F+Pzr/Hfp4MIYwZckMQmzfZZ

Malware Config

Targets

    • Target

      ec11e1acbe4ec4242fee3f6046366c0658eba7d7e610dd99526edab5dfca5ba8N.exe

    • Size

      558KB

    • MD5

      b2e9b51d84d265f837b47911471f20c0

    • SHA1

      3bfc4a924d380bf26f5c5846161155b5916306d0

    • SHA256

      ec11e1acbe4ec4242fee3f6046366c0658eba7d7e610dd99526edab5dfca5ba8

    • SHA512

      c7e763c2f8bf06de2487c960fcea4c1baa4a5156d0ae464e818652c897faf36cc58539786fde686127fda405fb90caf56bc1bc6652cdb818d5a69afd947cd0e7

    • SSDEEP

      12288:zh8fZLyb9PzVMBC/HVMOp4PkxHLCYwZckMQMNzfld1Z:z8F+Pzr/Hfp4MIYwZckMQmzfZZ

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.