ramnit | 975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

975fb96dbf...bd.exe

windows7-x64

3

975fb96dbf...bd.exe

windows10-2004-x64

Sharing

General

Target

975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd
Size

96KB
Sample

221107-hwqs6afgan
MD5

05a492debbb8c713ddf0bca4f61cb59d
SHA1

6a62cf9ba30fc0d740f15e70fc643cef7f9bb0c8
SHA256

975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd
SHA512

d2f815bf74dfb05a0aaa694ef6305e3c8ca524ef0bd4db6c9f3d7120a6ebdbc7a2d358e47430e955d6e88c1beb4224de1ee961e1c3cf07e0a397c138731a8a46
SSDEEP

1536:hOeTaQoIF3tsnoYwZeaapXq8OmNR6ayv3gR07Wt5hDQ2o/Wb6u8GrsqwKfX2VqaC:5aQo03tPdZeVXq8xNR6tgR07WtU/WbfX

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd.exe

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd
- Size
  
  96KB
- MD5
  
  05a492debbb8c713ddf0bca4f61cb59d
- SHA1
  
  6a62cf9ba30fc0d740f15e70fc643cef7f9bb0c8
- SHA256
  
  975fb96dbf2fe037e4e8f7c91509030fb214775aeb613021abb5207ba31f94bd
- SHA512
  
  d2f815bf74dfb05a0aaa694ef6305e3c8ca524ef0bd4db6c9f3d7120a6ebdbc7a2d358e47430e955d6e88c1beb4224de1ee961e1c3cf07e0a397c138731a8a46
- SSDEEP
  
  1536:hOeTaQoIF3tsnoYwZeaapXq8OmNR6ayv3gR07Wt5hDQ2o/Wb6u8GrsqwKfX2VqaC:5aQo03tPdZeVXq8xNR6tgR07WtU/WbfX
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy