ramnit | 087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a | Triage

Submit
Reports

Overview

overview

Static

static

087e2690cf...2a.exe

windows7_x64

087e2690cf...2a.exe

windows10_x64

Sharing

General

Target

087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a
Size

443KB
Sample

210515-kqg3ymtq8a
MD5

dc6b0680a083cc318c5421e18ab207c9
SHA1

0aa198049f41243337c9cc32030388eb1ff58c39
SHA256

087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a
SHA512

e82db9d9718d41b645780e9a6c54703570c1c56440c5d0efb04023d4e254cf1f03c87df9d3bec0317d787af689d7a2e07109ac9eac03f191c8e0ce32f932a064

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a.exe

Resource

win7v20210408

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a.exe

Resource

win10v20210410

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a
- Size
  
  443KB
- MD5
  
  dc6b0680a083cc318c5421e18ab207c9
- SHA1
  
  0aa198049f41243337c9cc32030388eb1ff58c39
- SHA256
  
  087e2690cf320941bd5f23fbdfee6ae692c8518eb073bd256a2106d28f71ee2a
- SHA512
  
  e82db9d9718d41b645780e9a6c54703570c1c56440c5d0efb04023d4e254cf1f03c87df9d3bec0317d787af689d7a2e07109ac9eac03f191c8e0ce32f932a064
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy