ramnit | 7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5 | Triage

Submit
Reports

Overview

overview

Static

static

7fe6b78786...f5.dll

windows7_x64

7fe6b78786...f5.dll

windows10_x64

Sharing

General

Target

7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5
Size

303KB
Sample

210516-zjq1js3a4s
MD5

3d7c36772f6b118c0a20baf92508fb24
SHA1

a57afe3d10ee16d8d6e459d345eb27fcf2cfdb1b
SHA256

7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5
SHA512

b2fcff9f76b2e2568cbeb2e8bde5b5ba4adfe711b6a6163c6a0098ded1b91b2014266d0a73755302c71a1524493d9a9832ad15f6363ea579c1bce03e9ba895f0

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5.dll

Resource

win7v20210410

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5.dll

Resource

win10v20210408

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5
- Size
  
  303KB
- MD5
  
  3d7c36772f6b118c0a20baf92508fb24
- SHA1
  
  a57afe3d10ee16d8d6e459d345eb27fcf2cfdb1b
- SHA256
  
  7fe6b787868fafb5d167df1237f9bef91c477b747c1075550428279c593507f5
- SHA512
  
  b2fcff9f76b2e2568cbeb2e8bde5b5ba4adfe711b6a6163c6a0098ded1b91b2014266d0a73755302c71a1524493d9a9832ad15f6363ea579c1bce03e9ba895f0
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy