ramnit | bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34 | Triage

Submit
Reports

Overview

overview

Static

static

8

bccff92b0e...34.dll

windows7_x64

bccff92b0e...34.dll

windows10_x64

Sharing

General

Target

bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34
Size

166KB
Sample

210508-83pkb1dfq2
MD5

902274aa78b897b0a2a22d5825937dc4
SHA1

342f422b00ae3e589594fd27087910d0f3e3bde2
SHA256

bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34
SHA512

6c2ae64a1a41bf0961eb19b5e2546f789d6311f0a4ded609f82329bde315f8e54d32e1d80abbb31c5854fc9f9b4bbedf8941cc4039911067ed1a9c659252a3a3

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34.dll

Resource

win7v20210410

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34.dll

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34
- Size
  
  166KB
- MD5
  
  902274aa78b897b0a2a22d5825937dc4
- SHA1
  
  342f422b00ae3e589594fd27087910d0f3e3bde2
- SHA256
  
  bccff92b0eb7a62fcb05ee90344ce8c1ce440943fcbcd0f638fcc02562b51d34
- SHA512
  
  6c2ae64a1a41bf0961eb19b5e2546f789d6311f0a4ded609f82329bde315f8e54d32e1d80abbb31c5854fc9f9b4bbedf8941cc4039911067ed1a9c659252a3a3
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy