ramnit | b8e40ed3d1f01fd75f0f43d4784d92aaa9596f289f23c35969af1a4c1e149c30 | Triage

Submit
Reports

Overview

overview

Static

static

8

SHITYOURSELF.exe

windows7_x64

SHITYOURSELF.exe

windows10-2004_x64

Sharing

General

Target

SHITYOURSELF.exe
Size

121KB
Sample

220314-fvvplsdea7
MD5

c497c71621630045eb8d0673ae817d70
SHA1

74c6e0b93f8c6d5d5634bf32a47a6c4968fefc01
SHA256

b8e40ed3d1f01fd75f0f43d4784d92aaa9596f289f23c35969af1a4c1e149c30
SHA512

73a8f54b95ccdfaa5f2e42dca771687612e514de87904840f4eac5fc87f0262051e614c0b0f4d576fe99f58b421dc106f45fe3bea011e0eb8bdc2d99e92f6463

Score

10^/10

ramnit banker evasion spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

SHITYOURSELF.exe

Resource

win7-20220311-en

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

SHITYOURSELF.exe

Resource

win10v2004-en-20220113

ramnit banker evasion spyware stealer trojan upx worm

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  SHITYOURSELF.exe
- Size
  
  121KB
- MD5
  
  c497c71621630045eb8d0673ae817d70
- SHA1
  
  74c6e0b93f8c6d5d5634bf32a47a6c4968fefc01
- SHA256
  
  b8e40ed3d1f01fd75f0f43d4784d92aaa9596f289f23c35969af1a4c1e149c30
- SHA512
  
  73a8f54b95ccdfaa5f2e42dca771687612e514de87904840f4eac5fc87f0262051e614c0b0f4d576fe99f58b421dc106f45fe3bea011e0eb8bdc2d99e92f6463
Score

10^/10

ramnit banker spyware stealer trojan upx worm evasion
- Modifies firewall policy service
  evasion
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerevasionspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy