ramnit | 43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef | Triage

Submit
Reports

Overview

overview

Static

static

43266fe3de...ef.exe

windows7-x64

43266fe3de...ef.exe

windows10-2004-x64

Sharing

General

Target

43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef
Size

1.0MB
Sample

221106-z5wjfaecfk
MD5

07a75da008e1579e4e19010675c9a1a0
SHA1

aef1056dcb2bf4247f1f84d0aba1b01e4f52d21e
SHA256

43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef
SHA512

c422e8764d5e36f7c673d1981b490eb45ed8ef652fa03145d5c06c3b9d6dc3f5a536de7deeac9e29dbb70629016382d7069eb790bf385059ffbd1a44a50d5524
SSDEEP

24576:a9ZKFH5rKr7xrZ2DwtmTWvqxXL3KJeoM11nmEZZi5:GIZrKr7p3magLPo4NmAw

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef.exe

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef.exe

Resource

win10v2004-20220901-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef
- Size
  
  1.0MB
- MD5
  
  07a75da008e1579e4e19010675c9a1a0
- SHA1
  
  aef1056dcb2bf4247f1f84d0aba1b01e4f52d21e
- SHA256
  
  43266fe3deefd4fda1fa0f22aae9f4f78ed44640b68fec3cd8de9a5da58fb1ef
- SHA512
  
  c422e8764d5e36f7c673d1981b490eb45ed8ef652fa03145d5c06c3b9d6dc3f5a536de7deeac9e29dbb70629016382d7069eb790bf385059ffbd1a44a50d5524
- SSDEEP
  
  24576:a9ZKFH5rKr7xrZ2DwtmTWvqxXL3KJeoM11nmEZZi5:GIZrKr7p3magLPo4NmAw
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy