ramnit | 9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4 | Triage

Submit
Reports

Overview

overview

Static

static

9f32f86067...c4.dll

windows7-x64

9f32f86067...c4.dll

windows10-2004-x64

8

Sharing

General

Target

9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4
Size

572KB
Sample

221106-znrh6abch8
MD5

116e7e86d5dba429ce3163a12791a9c0
SHA1

115c7ce8116fd3768c03068a0b24221aee1c5494
SHA256

9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4
SHA512

64ab5711e930d4ebbb3071a16033afd33eb05461c225c1515abd26105e276debd1afef6a3beddd22d59ba4d36026a6eea7627d9e2325c97365109f414f74f93c
SSDEEP

6144:7ZLT3A5Dp0HvFIc5vBlcQGSgS62iiiiiSySYSGS+8c8c8AAANA/AA0fMGrgPhclf:7ZL7A5l0711g8onrOcWAqVvTkFsxg

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4.dll

Resource

win7-20220901-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4
- Size
  
  572KB
- MD5
  
  116e7e86d5dba429ce3163a12791a9c0
- SHA1
  
  115c7ce8116fd3768c03068a0b24221aee1c5494
- SHA256
  
  9f32f8606762856d345439f01a8a22dfef17dcf891927a354991fdee3449a9c4
- SHA512
  
  64ab5711e930d4ebbb3071a16033afd33eb05461c225c1515abd26105e276debd1afef6a3beddd22d59ba4d36026a6eea7627d9e2325c97365109f414f74f93c
- SSDEEP
  
  6144:7ZLT3A5Dp0HvFIc5vBlcQGSgS62iiiiiSySYSGS+8c8c8AAANA/AA0fMGrgPhclf:7ZL7A5l0711g8onrOcWAqVvTkFsxg
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy