ramnit | dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713 | Triage

Submit
Reports

Overview

overview

Static

static

dc8aca4d11...13.dll

windows7-x64

dc8aca4d11...13.dll

windows10-2004-x64

Sharing

General

Target

dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713
Size

212KB
Sample

221129-jgvn8she52
MD5

0882599e9930b04f02092fcc6e2c9374
SHA1

5caa7ab024e1324e47a30596dcb07cfc5909670b
SHA256

dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713
SHA512

ac4d77837b1fa84e28afda29f8d70bf2613c5842755ae1aa9f486396acd19e78afb0c86d678e89666f1b3e9010aee9cf05ba09e97ec1de46e0dc55f13fc9e495
SSDEEP

3072:wgKKuiX63bw5dNjDh8pWVgTlFIYaLIR9cMrnZMu6VsmdytsLTMkDYfkXUBc9gLl:hKZp3KNjVGvaLIRJTj6Cmdyt6PXTA

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713.dll

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713
- Size
  
  212KB
- MD5
  
  0882599e9930b04f02092fcc6e2c9374
- SHA1
  
  5caa7ab024e1324e47a30596dcb07cfc5909670b
- SHA256
  
  dc8aca4d119393a7b381db7c10258f2392d467a2e2cc7942491e2856c475c713
- SHA512
  
  ac4d77837b1fa84e28afda29f8d70bf2613c5842755ae1aa9f486396acd19e78afb0c86d678e89666f1b3e9010aee9cf05ba09e97ec1de46e0dc55f13fc9e495
- SSDEEP
  
  3072:wgKKuiX63bw5dNjDh8pWVgTlFIYaLIR9cMrnZMu6VsmdytsLTMkDYfkXUBc9gLl:hKZp3KNjVGvaLIRJTj6Cmdyt6PXTA
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy