ramnit | c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20 | Triage

Submit
Reports

Overview

overview

Static

static

c0a68401f1...20.exe

windows7_x64

c0a68401f1...20.exe

windows10_x64

Sharing

General

Target

c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20
Size

3.0MB
Sample

210515-jpjwxy1qh2
MD5

6fb77db725e8348cc5f65d224a46a880
SHA1

5cbf64bd67d8a2ae93f87c6b9988652448235cee
SHA256

c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20
SHA512

c45a88884c3867a824832712f6fae8105eeeeac21b67934dcfe3d46efbe8b6d03ccd087e9c3df168d218769b116fddf5a2ffad697b95b36d0496078c09916492

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20.exe

Resource

win7v20210410

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20.exe

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20
- Size
  
  3.0MB
- MD5
  
  6fb77db725e8348cc5f65d224a46a880
- SHA1
  
  5cbf64bd67d8a2ae93f87c6b9988652448235cee
- SHA256
  
  c0a68401f157e11bbaa8f00687410c74e0a92b3ac1c2c9ab0304bb1e8e98de20
- SHA512
  
  c45a88884c3867a824832712f6fae8105eeeeac21b67934dcfe3d46efbe8b6d03ccd087e9c3df168d218769b116fddf5a2ffad697b95b36d0496078c09916492
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy