ramnit | 07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5 | Triage

Submit
Reports

Overview

overview

Static

static

07b8d7957c...e5.exe

windows7-x64

07b8d7957c...e5.exe

windows10-2004-x64

Sharing

General

Target

07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5
Size

820KB
Sample

221127-yca7csdc27
MD5

ad3151a0cd42d6f12d6840125ead52c7
SHA1

3194f228466dd0448e8e6a47e2fe745013230977
SHA256

07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5
SHA512

dc15e4cf0e070d2df231d559d3a083b35156a46fb255f6b95f313e1d74076630570622a3b2632fcaf6dd5069d8e51f6587a3828edabbb16ce5b259b522af0373
SSDEEP

12288:LQ9FvMq9BGqzhSEmXaz8mPWrunZqummCHw0F/OUxDalRjlxKVNa4zNmVZ+ZeJR7g:CMqLGqzACZquVCHNFWc8f28QzeXdq

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5.exe

Resource

win7-20221111-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5.exe

Resource

win10v2004-20221111-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5
- Size
  
  820KB
- MD5
  
  ad3151a0cd42d6f12d6840125ead52c7
- SHA1
  
  3194f228466dd0448e8e6a47e2fe745013230977
- SHA256
  
  07b8d7957cbfe94f4160b76ac43c19182a3dbd555566df1320fd8d4ca98f4fe5
- SHA512
  
  dc15e4cf0e070d2df231d559d3a083b35156a46fb255f6b95f313e1d74076630570622a3b2632fcaf6dd5069d8e51f6587a3828edabbb16ce5b259b522af0373
- SSDEEP
  
  12288:LQ9FvMq9BGqzhSEmXaz8mPWrunZqummCHw0F/OUxDalRjlxKVNa4zNmVZ+ZeJR7g:CMqLGqzACZquVCHNFWc8f28QzeXdq
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy