ramnit | eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf | Triage

Submit
Reports

Overview

overview

Static

static

eb13dd021c...cf.dll

windows7_x64

eb13dd021c...cf.dll

windows10_x64

Sharing

General

Target

eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf
Size

1.5MB
Sample

210513-bz4jzztb6n
MD5

57cf9612a55c03b3793a199ffa3e2034
SHA1

6a84aa2aa4f00af3c9294989fa44ae52b7aa6777
SHA256

eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf
SHA512

41256a75eb5cfbd29ca669e135f8e94534efb09e52ebc54a995f465c7db1a8cd1aece6370e50893e84c7140a5280e2dd7cbdb709f097f02e4f56e09356ab2481

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf.dll

Resource

win7v20210408

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf.dll

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf
- Size
  
  1.5MB
- MD5
  
  57cf9612a55c03b3793a199ffa3e2034
- SHA1
  
  6a84aa2aa4f00af3c9294989fa44ae52b7aa6777
- SHA256
  
  eb13dd021ce43db32bebac601ca166bcb4ac500600f59b80815400c8c63bcecf
- SHA512
  
  41256a75eb5cfbd29ca669e135f8e94534efb09e52ebc54a995f465c7db1a8cd1aece6370e50893e84c7140a5280e2dd7cbdb709f097f02e4f56e09356ab2481
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy