Overview

overview

10

Static

static

3

bc5e54a0f2...b7.dll

windows7-x64

10

bc5e54a0f2...b7.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bc5e54a0f2466f878e1b0b37683db5f513a00ca5085b09167f317ae22bf138b7.exe

  • Size

    2.5MB

  • Sample

    250124-de471axnaq

  • MD5

    1a5213723f7d8e0d40d1902643498fd4

  • SHA1

    afb43438d6999be0ac626792653f835a0f0cde0a

  • SHA256

    bc5e54a0f2466f878e1b0b37683db5f513a00ca5085b09167f317ae22bf138b7

  • SHA512

    34257f3f52e54a1caf9249986ff6042b702d5619b8b0dcdf5e1335a74847de44dc48e06be080f87845f825bc977ae376196ceac93ebaeb388128f4ec74c03c33

  • SSDEEP

    49152:ZWGT8J8nXBXb7D1WkEFNPWRp0JeeI8ENn+4B5UP:XT8J4/158WRry

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      bc5e54a0f2466f878e1b0b37683db5f513a00ca5085b09167f317ae22bf138b7.exe

    • Size

      2.5MB

    • MD5

      1a5213723f7d8e0d40d1902643498fd4

    • SHA1

      afb43438d6999be0ac626792653f835a0f0cde0a

    • SHA256

      bc5e54a0f2466f878e1b0b37683db5f513a00ca5085b09167f317ae22bf138b7

    • SHA512

      34257f3f52e54a1caf9249986ff6042b702d5619b8b0dcdf5e1335a74847de44dc48e06be080f87845f825bc977ae376196ceac93ebaeb388128f4ec74c03c33

    • SSDEEP

      49152:ZWGT8J8nXBXb7D1WkEFNPWRp0JeeI8ENn+4B5UP:XT8J4/158WRry

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks