ramnit | eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8 | Triage

Submit
Reports

Overview

overview

Static

static

eb09f36941...d8.dll

windows7_x64

eb09f36941...d8.dll

windows10_x64

Sharing

General

Target

eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8
Size

898KB
Sample

210513-zg4vlmyvvx
MD5

cc53bfc50cfcd14a46f06a4c55840ed3
SHA1

3f41855c3a64e3d3195beb3fc9dd299bd5401fc7
SHA256

eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8
SHA512

b5c0a3029620e4ec144b81de34bc647f68f39c9e2ded49778760a1cd66244c4bd97fc67c078c299884be21598fc21355f8e26390a121cd0b940e7d113808efa0

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8.dll

Resource

win7v20210410

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8.dll

Resource

win10v20210408

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8
- Size
  
  898KB
- MD5
  
  cc53bfc50cfcd14a46f06a4c55840ed3
- SHA1
  
  3f41855c3a64e3d3195beb3fc9dd299bd5401fc7
- SHA256
  
  eb09f3694157d65b0b3c08fba66533b5679252a5b53f30835bca0a600a556dd8
- SHA512
  
  b5c0a3029620e4ec144b81de34bc647f68f39c9e2ded49778760a1cd66244c4bd97fc67c078c299884be21598fc21355f8e26390a121cd0b940e7d113808efa0
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy