ramnit | 68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1 | Triage

Submit
Reports

Overview

overview

Static

static

68b2dab467...c1.exe

windows7-x64

68b2dab467...c1.exe

windows10-2004-x64

8

Sharing

General

Target

68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1
Size

389KB
Sample

221106-zyq1daeaar
MD5

060e63630afce5acbb77168b488a8f40
SHA1

26da8a7728985a42a72dbf50b38d6533394ae51f
SHA256

68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1
SHA512

9f8d13ff55cc57d5da9130b849ae3b19055a6864ab3a385b61dab7044c044fb52c52b2d34f4d839ac3d8cda3a1df7914f828566cc692387ab4d24fb17ee4a981
SSDEEP

6144:H5BJvadeLnJiYZ+up5BmmbqaRhmNN5HcdOHjPvfALvbCHI:H/AmiwZ/JqVcW7ALvbEI

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1.exe

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1
- Size
  
  389KB
- MD5
  
  060e63630afce5acbb77168b488a8f40
- SHA1
  
  26da8a7728985a42a72dbf50b38d6533394ae51f
- SHA256
  
  68b2dab467a69223c9f6d23a3bd9aadf567add039f7f485b7fd6149eec0afbc1
- SHA512
  
  9f8d13ff55cc57d5da9130b849ae3b19055a6864ab3a385b61dab7044c044fb52c52b2d34f4d839ac3d8cda3a1df7914f828566cc692387ab4d24fb17ee4a981
- SSDEEP
  
  6144:H5BJvadeLnJiYZ+up5BmmbqaRhmNN5HcdOHjPvfALvbCHI:H/AmiwZ/JqVcW7ALvbEI
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy