ramnit | a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e | Triage

Submit
Reports

Overview

overview

Static

static

8

a1a91e9f2f...0e.exe

windows7_x64

a1a91e9f2f...0e.exe

windows10_x64

Sharing

General

Target

a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e
Size

149KB
Sample

210515-72zxamcxlj
MD5

c4c41774da7a3159303357633436a14c
SHA1

7ba8859d5753323b334b56af0e57a2a7abad6fef
SHA256

a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e
SHA512

cdabc106e973646affad22e11609aae6344789c29822f32112afb13c4b98aa3fdcdf3f16f86f86ffbb377b1a78677035109fd66200c14842c625149135621cb1

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e.exe

Resource

win7v20210408

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e.exe

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e
- Size
  
  149KB
- MD5
  
  c4c41774da7a3159303357633436a14c
- SHA1
  
  7ba8859d5753323b334b56af0e57a2a7abad6fef
- SHA256
  
  a1a91e9f2f404225bdaeca436758ed79a4aca1b88bf77d9e9ecdb0a0abc3ed0e
- SHA512
  
  cdabc106e973646affad22e11609aae6344789c29822f32112afb13c4b98aa3fdcdf3f16f86f86ffbb377b1a78677035109fd66200c14842c625149135621cb1
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy