ramnit | b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1 | Triage

Submit
Reports

Overview

overview

Static

static

b5f364139b...f1.exe

windows7_x64

b5f364139b...f1.exe

windows10-2004_x64

Sharing

General

Target

b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1
Size

1.8MB
Sample

220701-ent9tsdbc5
MD5

4e9801421636a010d18358383c574794
SHA1

96fa3eb6ed1e7cd228ec7282f3289758cd2730c4
SHA256

b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1
SHA512

c0b885b710ea3b5c36ed837a602e72b806961d186d015e6824ed0e9f04db4b28db8e927ecf4672a9fb2ea1e666806877403d23c9016eb0af920c498ff0060b9b

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1.exe

Resource

win7-20220414-en

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1.exe

Resource

win10v2004-20220414-en

ramnit banker spyware stealer trojan upx worm

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1
- Size
  
  1.8MB
- MD5
  
  4e9801421636a010d18358383c574794
- SHA1
  
  96fa3eb6ed1e7cd228ec7282f3289758cd2730c4
- SHA256
  
  b5f364139b2f684f2fb870163fdf3a54d21068a18806d90b3bcfe2c13feeccf1
- SHA512
  
  c0b885b710ea3b5c36ed837a602e72b806961d186d015e6824ed0e9f04db4b28db8e927ecf4672a9fb2ea1e666806877403d23c9016eb0af920c498ff0060b9b
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy