ramnit | f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1 | Triage

Submit
Reports

Overview

overview

Static

static

f9cff216af...f1.dll

windows7_x64

f9cff216af...f1.dll

windows10_x64

Sharing

General

Target

f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1
Size

151KB
Sample

210515-wh7dqfrvda
MD5

e1ed5d41aea7117a6959d5491251f169
SHA1

bd47ab995e9991020475b1921ffb407a71651089
SHA256

f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1
SHA512

0e7ddda211e49d198ca2e7602f2c9e2b7739bf040ed52138f63901ef7a297933f5637f3d7d5ee6b254b5a4bff26fd35952446520b7a0e3aa969794a365b8bc46

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1.dll

Resource

win7v20210408

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1.dll

Resource

win10v20210408

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1
- Size
  
  151KB
- MD5
  
  e1ed5d41aea7117a6959d5491251f169
- SHA1
  
  bd47ab995e9991020475b1921ffb407a71651089
- SHA256
  
  f9cff216aff1fe0dcde59f01207ea7551bfd71f71dde850f334c49a1be3fcbf1
- SHA512
  
  0e7ddda211e49d198ca2e7602f2c9e2b7739bf040ed52138f63901ef7a297933f5637f3d7d5ee6b254b5a4bff26fd35952446520b7a0e3aa969794a365b8bc46
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy