ramnit | bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9 | Triage

Submit
Reports

Overview

overview

Static

static

bf2ec2c535...a9.exe

windows7_x64

bf2ec2c535...a9.exe

windows10_x64

Sharing

General

Target

bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9
Size

140KB
Sample

210515-bzrwntz892
MD5

9e2032b9d85fd8d9d34a0ba0d6d2911b
SHA1

cfd49ff587e8f67eb51e8d7888016b891340254d
SHA256

bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9
SHA512

769535aee68186246bd6c6b57a0b75b6e03a2e085ed4210c05f0e83e2c6472b1040ae54a6692a98e5c3386059e43d580dd57b5a82f59e986b6e5495d9f584fe7

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9.exe

Resource

win7v20210408

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9.exe

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9
- Size
  
  140KB
- MD5
  
  9e2032b9d85fd8d9d34a0ba0d6d2911b
- SHA1
  
  cfd49ff587e8f67eb51e8d7888016b891340254d
- SHA256
  
  bf2ec2c535921ddfae6951156f6ecc50936ce1bb9155fb5b646e221dcbc9eca9
- SHA512
  
  769535aee68186246bd6c6b57a0b75b6e03a2e085ed4210c05f0e83e2c6472b1040ae54a6692a98e5c3386059e43d580dd57b5a82f59e986b6e5495d9f584fe7
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy