ramnit | 5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7 | Triage

Submit
Reports

Overview

overview

Static

static

5e7b566b0b...d7.dll

windows7-x64

5e7b566b0b...d7.dll

windows10-2004-x64

Sharing

General

Target

5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7
Size

957KB
Sample

221106-z1f8yseafp
MD5

08eca14a23aeec052608f618a5d343e0
SHA1

0053a3f987da0dd25ad7d3283d4cd57716733f37
SHA256

5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7
SHA512

271bfce0a1f8d7f71b7dcdb78fa1ce8a3a7a7d0b9974db685f99cff72b61e2af6ee90952136f9e9f5e17fa69228b11b9abe42d28aafe4def9d188a060a0a5a61
SSDEEP

24576:xc5aRvH2bD5axXUXoef5WmgEXRgTft1KZL/L9GtXkNRz7q6PTZjA6as+7VDasXS:xOoUXdPuB1KZLL9GtXkNlq6xJdCVDw

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7.dll

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7
- Size
  
  957KB
- MD5
  
  08eca14a23aeec052608f618a5d343e0
- SHA1
  
  0053a3f987da0dd25ad7d3283d4cd57716733f37
- SHA256
  
  5e7b566b0b1ee56350feddfa4283a9c14994898875f4158c98d801aba2149fd7
- SHA512
  
  271bfce0a1f8d7f71b7dcdb78fa1ce8a3a7a7d0b9974db685f99cff72b61e2af6ee90952136f9e9f5e17fa69228b11b9abe42d28aafe4def9d188a060a0a5a61
- SSDEEP
  
  24576:xc5aRvH2bD5axXUXoef5WmgEXRgTft1KZL/L9GtXkNRz7q6PTZjA6as+7VDasXS:xOoUXdPuB1KZLL9GtXkNlq6xJdCVDw
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy