ramnit | 80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36 | Triage

Submit
Reports

Overview

overview

Static

static

80b4f7853c...36.dll

windows7-x64

80b4f7853c...36.dll

windows10-2004-x64

8

Sharing

General

Target

80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36
Size

244KB
Sample

221123-w7x89shb4t
MD5

18208e8e37f9fa9cf14c80586692de83
SHA1

6c4a46c5e3d95170bd6d409da0fd2ae37061a3d0
SHA256

80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36
SHA512

a1e747cf639e8930d355fccbc90e3c5711f7ec9de4b945dc7eec40a3f04391ba93df1e1d10002a7b3e9c690ad4e7cacaff999de3c0f82c97d7489d2717251971
SSDEEP

6144:bKogeeNMPaZRupn+aZGVXpEqI2JX6gAy/Awc:bmEc8B+XLEqIeX6gAy/s

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36
- Size
  
  244KB
- MD5
  
  18208e8e37f9fa9cf14c80586692de83
- SHA1
  
  6c4a46c5e3d95170bd6d409da0fd2ae37061a3d0
- SHA256
  
  80b4f7853cb21e79d8fa00fa9865e5b3a45a7e6d450bb492d5694a87bca02a36
- SHA512
  
  a1e747cf639e8930d355fccbc90e3c5711f7ec9de4b945dc7eec40a3f04391ba93df1e1d10002a7b3e9c690ad4e7cacaff999de3c0f82c97d7489d2717251971
- SSDEEP
  
  6144:bKogeeNMPaZRupn+aZGVXpEqI2JX6gAy/Awc:bmEc8B+XLEqIeX6gAy/s
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy