ramnit | 587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab | Triage

Submit
Reports

Overview

overview

Static

static

587fc11ecb...ab.exe

windows7-x64

587fc11ecb...ab.exe

windows10-2004-x64

8

Sharing

General

Target

587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab
Size

206KB
Sample

221123-vtwb3saa42
MD5

5347ad97a9493cc08ac12fdccb5c8459
SHA1

7f15570e430150388fd5ed5243dafeacc74fa7fe
SHA256

587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab
SHA512

1d747232e070c17e271364352ea6367de631903cf71f61c60c9f343873e06a02e359e1c70dde95f44b6a0dc4a8dd00bd07ff9ad66e257376feb0c4ca7e36c475
SSDEEP

6144:xgeeNMPaZRupn+aZGVXpEqI2JX6gAy/AwD:AEc8B+XLEqIeX6gAy/T

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab.exe

Resource

win7-20221111-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab
- Size
  
  206KB
- MD5
  
  5347ad97a9493cc08ac12fdccb5c8459
- SHA1
  
  7f15570e430150388fd5ed5243dafeacc74fa7fe
- SHA256
  
  587fc11ecb4f9a3a065a7eb899c61fd0b72d8695c15b25b50920c6d61416faab
- SHA512
  
  1d747232e070c17e271364352ea6367de631903cf71f61c60c9f343873e06a02e359e1c70dde95f44b6a0dc4a8dd00bd07ff9ad66e257376feb0c4ca7e36c475
- SSDEEP
  
  6144:xgeeNMPaZRupn+aZGVXpEqI2JX6gAy/AwD:AEc8B+XLEqIeX6gAy/T
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy