ramnit | bd5f19d54c0d5de713d609653e64116e07af8037a322f803850c9cb1e6a03c90 | Triage

Submit
Reports

Overview

overview

Static

static

8

dridex

windows10_x64

Sharing

General

Target

bd5f19d54c0d5de713d609653e64116e07af8037a322f803850c9cb1e6a03c90
Size

149KB
Sample

211005-f8madshedq
MD5

47c116db3f0e5d536352aaecbbc7d6b6
SHA1

9aab8a86b946ba6eaf513206e1c594fda27ae646
SHA256

bd5f19d54c0d5de713d609653e64116e07af8037a322f803850c9cb1e6a03c90
SHA512

82d6325993b4bbddf1c1db66d47de0430ad67338303708889fe0914aec6259579501c5b5ca0ad8cd18262d8a722f327ded0ad62a8c4559b8293cfaee3ab03aad

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

bd5f19d54c0d5de713d609653e64116e07af8037a322f803850c9cb1e6a03c90.exe

Resource

win10-en-20210920

ramnit banker spyware stealer trojan upx worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  bd5f19d54c0d5de713d609653e64116e07af8037a322f803850c9cb1e6a03c90
- Size
  
  149KB
- MD5
  
  47c116db3f0e5d536352aaecbbc7d6b6
- SHA1
  
  9aab8a86b946ba6eaf513206e1c594fda27ae646
- SHA256
  
  bd5f19d54c0d5de713d609653e64116e07af8037a322f803850c9cb1e6a03c90
- SHA512
  
  82d6325993b4bbddf1c1db66d47de0430ad67338303708889fe0914aec6259579501c5b5ca0ad8cd18262d8a722f327ded0ad62a8c4559b8293cfaee3ab03aad
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy