ramnit | a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3 | Triage

Submit
Reports

Overview

overview

Static

static

a5058b9528...d3.dll

windows7_x64

a5058b9528...d3.dll

windows10_x64

Sharing

General

Target

a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3
Size

332KB
Sample

210509-kwjjvpr8jj
MD5

015e11b88afcd635d409dd37d63b34ee
SHA1

efdccbe4280d4f8f635bb2bd74c912bab6a0bf38
SHA256

a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3
SHA512

ef7c3c6b9462e33437b83b93bdc3a193b9bdc951f14483c072362491747551aefca4238085bdf4410ebf429c74f6366cee8b081090c0a65a171969f18f524957

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3.dll

Resource

win7v20210410

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3.dll

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3
- Size
  
  332KB
- MD5
  
  015e11b88afcd635d409dd37d63b34ee
- SHA1
  
  efdccbe4280d4f8f635bb2bd74c912bab6a0bf38
- SHA256
  
  a5058b9528ef9cd2997cd143a8ed3e18e44b354ee331378c651a53852fdda5d3
- SHA512
  
  ef7c3c6b9462e33437b83b93bdc3a193b9bdc951f14483c072362491747551aefca4238085bdf4410ebf429c74f6366cee8b081090c0a65a171969f18f524957
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy