ramnit | 8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46 | Triage

Submit
Reports

Overview

overview

Static

static

8a23dd633a...46.dll

windows7-x64

8a23dd633a...46.dll

windows10-2004-x64

Sharing

General

Target

8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46
Size

83KB
Sample

221004-fycm7sdeh3
MD5

531e1f5c25eb617417baf9123c5cb880
SHA1

e6b240f9238edf9bc88fae9d29924a6976463c80
SHA256

8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46
SHA512

b0b2923b970b904a902c471a975ff126fd0eaf569006e9fd960de6968f86d2a4a8ddc3fb692b69c5252ad3380f9df6347891061a1a84f9ac5bf877a2e878ad48
SSDEEP

1536:h2lFYHQuwVlfLJDuF1hl/OZzmw9U4VsvsdvYQTboLapfqVDskZ+FKri/tA:hUA2lfLqhl/Xw9UCsWz3oOpAb

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46.dll

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46
- Size
  
  83KB
- MD5
  
  531e1f5c25eb617417baf9123c5cb880
- SHA1
  
  e6b240f9238edf9bc88fae9d29924a6976463c80
- SHA256
  
  8a23dd633a39e69f40c627685d86bb7b41d111b4a374d0b5b5f233ac62e99e46
- SHA512
  
  b0b2923b970b904a902c471a975ff126fd0eaf569006e9fd960de6968f86d2a4a8ddc3fb692b69c5252ad3380f9df6347891061a1a84f9ac5bf877a2e878ad48
- SSDEEP
  
  1536:h2lFYHQuwVlfLJDuF1hl/OZzmw9U4VsvsdvYQTboLapfqVDskZ+FKri/tA:hUA2lfLqhl/Xw9UCsWz3oOpAb
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy