ramnit | 13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892 | Triage

Submit
Reports

Overview

overview

Static

static

1

13a2333280...92.exe

windows7-x64

13a2333280...92.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892
Size

8.0MB
Sample

221125-xrnwbsbg8s
MD5

232b62394ab2cf81972c74cb24ab6176
SHA1

373af2b3100d8c8006901086da54be0fd93109a6
SHA256

13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892
SHA512

6b98abc385f77263af16bf7d9cc6239f1ffbebdb7cec767ea61092bb0ed48e145446f3c3af931aef61e6fbab4ec68225450394a0980568a6a0ab1e6fe820988f
SSDEEP

196608:vrBkK4wpQFNkPbgLYha57J8EfeTPLA83F36IK1d:62pQzEta57yEfQlK1d

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892.exe

Resource

win7-20221111-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892.exe

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892
- Size
  
  8.0MB
- MD5
  
  232b62394ab2cf81972c74cb24ab6176
- SHA1
  
  373af2b3100d8c8006901086da54be0fd93109a6
- SHA256
  
  13a233328047f20a42f15552e80fefdde6568bee48943d8b16ef63d65e420892
- SHA512
  
  6b98abc385f77263af16bf7d9cc6239f1ffbebdb7cec767ea61092bb0ed48e145446f3c3af931aef61e6fbab4ec68225450394a0980568a6a0ab1e6fe820988f
- SSDEEP
  
  196608:vrBkK4wpQFNkPbgLYha57J8EfeTPLA83F36IK1d:62pQzEta57yEfQlK1d
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy