Overview

overview

10

Static

static

3

f91ec0b784...2N.dll

windows7-x64

7

f91ec0b784...2N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f91ec0b7844995cf71c92ac16afafd45cca77bc74c4394e7f5119a9b7f0b1532N.exe

  • Size

    504KB

  • Sample

    250116-hz2d3aykft

  • MD5

    a750fe49a05a90b4daa897a0d65a70a0

  • SHA1

    3df4421793e529abf8f0402f56a3098ff8fe0b73

  • SHA256

    f91ec0b7844995cf71c92ac16afafd45cca77bc74c4394e7f5119a9b7f0b1532

  • SHA512

    ba64d42a5492e15a470d6ab55dd693276ca9b5e5a29f3d1871737980d7614bde256f91a3704b32a8df4916714e94ba12737c4982f52613dce7af2d51beee0aab

  • SSDEEP

    12288:/h8fZLyb9PzVMBC/HVMOp4PkxHLCYwZckMQMNM3I9zjz:/8F+Pzr/Hfp4MIYwZckMQmMsXz

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      f91ec0b7844995cf71c92ac16afafd45cca77bc74c4394e7f5119a9b7f0b1532N.exe

    • Size

      504KB

    • MD5

      a750fe49a05a90b4daa897a0d65a70a0

    • SHA1

      3df4421793e529abf8f0402f56a3098ff8fe0b73

    • SHA256

      f91ec0b7844995cf71c92ac16afafd45cca77bc74c4394e7f5119a9b7f0b1532

    • SHA512

      ba64d42a5492e15a470d6ab55dd693276ca9b5e5a29f3d1871737980d7614bde256f91a3704b32a8df4916714e94ba12737c4982f52613dce7af2d51beee0aab

    • SSDEEP

      12288:/h8fZLyb9PzVMBC/HVMOp4PkxHLCYwZckMQMNM3I9zjz:/8F+Pzr/Hfp4MIYwZckMQmMsXz

    Score
    10/10
    discoveryramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks