ramnit | c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65 | Triage

Submit
Reports

Overview

overview

Static

static

c10d505c45...65.dll

windows7-x64

c10d505c45...65.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65
Size

136KB
Sample

221020-pnejgsdean
MD5

4f3c0b22ca58343be1c528fe029e08e0
SHA1

de3b1e9b286cf8fc7265d1febf332853c2d607ca
SHA256

c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65
SHA512

06911189e84c65115dcb6fe649231d6fa83aff3cd3fe54d3f2ab324fbe521d645019aeabddfb8f157459a997b1113e4691f33057f0ba61b6acfff2a30ba2852f
SSDEEP

3072:zGs3At+HPl1zOOwsl17l+xYy2Jkf5mGCYj6O0X/u:zPZvl1KOn8x3946O

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65.dll

Resource

win10v2004-20220901-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65
- Size
  
  136KB
- MD5
  
  4f3c0b22ca58343be1c528fe029e08e0
- SHA1
  
  de3b1e9b286cf8fc7265d1febf332853c2d607ca
- SHA256
  
  c10d505c45fbfb2cab7afe7f5f115faf91d37d4d6486e0f2bc7ba78e0244bc65
- SHA512
  
  06911189e84c65115dcb6fe649231d6fa83aff3cd3fe54d3f2ab324fbe521d645019aeabddfb8f157459a997b1113e4691f33057f0ba61b6acfff2a30ba2852f
- SSDEEP
  
  3072:zGs3At+HPl1zOOwsl17l+xYy2Jkf5mGCYj6O0X/u:zPZvl1KOn8x3946O
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy