ramnit | bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

bc57f63316...b2.exe

windows7-x64

bc57f63316...b2.exe

windows10-2004-x64

Sharing

General

Target

bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2
Size

197KB
Sample

221107-mw3vyaegal
MD5

0c4d34b0ef7111efda03e930a93f377f
SHA1

b96237f1901ce9599012eb0b904391df374ea529
SHA256

bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2
SHA512

85ce0fec52f10a09a3fc4dd1ab1dbc6fd0b219a5857be98775d0b6fa0a3e0af54ec6f1d1f510f0abeeb31a9492c7b434e2e4a3cecc6817f2f8d11900dba66750
SSDEEP

1536:Jh8Zc0c2T/53F/y8fnFZTd6Ue6IWVvmfYC+zyl+U8/6O+:v8Zc0hL53F/y0nzTd6UjIWVvn+o2

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2.exe

Resource

win7-20220901-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2.exe

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2
- Size
  
  197KB
- MD5
  
  0c4d34b0ef7111efda03e930a93f377f
- SHA1
  
  b96237f1901ce9599012eb0b904391df374ea529
- SHA256
  
  bc57f633161ea7fc06a0b93dfc19e79f1c13bc5512c67ae4d935f0c78fee08b2
- SHA512
  
  85ce0fec52f10a09a3fc4dd1ab1dbc6fd0b219a5857be98775d0b6fa0a3e0af54ec6f1d1f510f0abeeb31a9492c7b434e2e4a3cecc6817f2f8d11900dba66750
- SSDEEP
  
  1536:Jh8Zc0c2T/53F/y8fnFZTd6Ue6IWVvmfYC+zyl+U8/6O+:v8Zc0hL53F/y0nzTd6UjIWVvn+o2
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy