ramnit | d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd | Triage

Submit
Reports

Overview

overview

Static

static

d22de62110...bd.dll

windows7_x64

d22de62110...bd.dll

windows10_x64

Sharing

General

Target

d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd
Size

2.6MB
Sample

210515-bpq3jt55d2
MD5

b324562173dd617665b9f1fc9c2be4a5
SHA1

349cd63551de5944297d038e64d25125d15e958d
SHA256

d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd
SHA512

7785553b24f1edc1fb52cd5444b22c5072dffb83c664ed52682accd99a4b760e81c2e900d26d92f7c7b00b7f3ba19f14b6fec9f49cfa2b97405e69517864b0cf

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd.dll

Resource

win7v20210410

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd.dll

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd
- Size
  
  2.6MB
- MD5
  
  b324562173dd617665b9f1fc9c2be4a5
- SHA1
  
  349cd63551de5944297d038e64d25125d15e958d
- SHA256
  
  d22de621104e1930334ed632bd2d709c75bb38d4c494d88bb4d13e6733a06ebd
- SHA512
  
  7785553b24f1edc1fb52cd5444b22c5072dffb83c664ed52682accd99a4b760e81c2e900d26d92f7c7b00b7f3ba19f14b6fec9f49cfa2b97405e69517864b0cf
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy