ramnit | d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45 | Triage

Submit
Reports

Overview

overview

Static

static

d1bdd4c859...45.exe

windows7-x64

d1bdd4c859...45.exe

windows10-2004-x64

Sharing

General

Target

d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45
Size

2.0MB
Sample

221127-ybl78sdb76
MD5

5200678c77e9d3b80b9c8f2c29e95ec8
SHA1

ff32660535507f8b98aaffe73e0c0a98f4ee97ed
SHA256

d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45
SHA512

a4a00a98a56f5eae1abfdebbd4a5ed492c7c274b3ac933c61fd28147af3b2b167c1116b650bf962284062cb4881944eb9c772c84faa8b9abd39142bd211a6e9f
SSDEEP

24576:mRmVtvS0ROzfbncEw8c0bIksrl96yuOZ3FN5gFTM1mABG3qv:miwcEwkAGjs/gFI1Pf

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45.exe

Resource

win7-20220901-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45.exe

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45
- Size
  
  2.0MB
- MD5
  
  5200678c77e9d3b80b9c8f2c29e95ec8
- SHA1
  
  ff32660535507f8b98aaffe73e0c0a98f4ee97ed
- SHA256
  
  d1bdd4c8598485acc69851c9a61d5156a2a4622039230715114d883ac7fbfa45
- SHA512
  
  a4a00a98a56f5eae1abfdebbd4a5ed492c7c274b3ac933c61fd28147af3b2b167c1116b650bf962284062cb4881944eb9c772c84faa8b9abd39142bd211a6e9f
- SSDEEP
  
  24576:mRmVtvS0ROzfbncEw8c0bIksrl96yuOZ3FN5gFTM1mABG3qv:miwcEwkAGjs/gFI1Pf
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy