ramnit | bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554 | Triage

Submit
Reports

Overview

overview

Static

static

bbb7a8200e...54.dll

windows7-x64

bbb7a8200e...54.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554
Size

135KB
Sample

221106-zhtfkabaf8
MD5

089af8c9413525097c1e531612cf4ec0
SHA1

2d5816923d07733e980a3b582a53e6b15a2203a8
SHA256

bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554
SHA512

2595e195251e10082fc3689d75c9b198123334b144d169302249b43e5232fe2b69943d7a3dea40cc7ad24b025c146c73e6ac9a60581ff0fd9a0e37db42ba1f54
SSDEEP

3072:8zgX0zcelGO7TBfNRmaGn1ptTa5mCtv1Zr50Y+:5ndO7TBij1pNaACh1Z10

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554.dll

Resource

win7-20220901-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554.dll

Resource

win10v2004-20220901-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554
- Size
  
  135KB
- MD5
  
  089af8c9413525097c1e531612cf4ec0
- SHA1
  
  2d5816923d07733e980a3b582a53e6b15a2203a8
- SHA256
  
  bbb7a8200e5712fe4ca2b2feb1e83c969ef26305fd2862e56399b27ad0a90554
- SHA512
  
  2595e195251e10082fc3689d75c9b198123334b144d169302249b43e5232fe2b69943d7a3dea40cc7ad24b025c146c73e6ac9a60581ff0fd9a0e37db42ba1f54
- SSDEEP
  
  3072:8zgX0zcelGO7TBfNRmaGn1ptTa5mCtv1Zr50Y+:5ndO7TBij1pNaACh1Z10
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy