ramnit | 8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef | Triage

Submit
Reports

Overview

overview

Static

static

8c64aa03f5...ef.dll

windows7-x64

8c64aa03f5...ef.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef
Size

502KB
Sample

221129-jnyz8sdb6w
MD5

2d8859eaec749d1deb324e3323613b92
SHA1

ca198d9246138f7fd94efac868977fd35d5b52f3
SHA256

8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef
SHA512

5b84a0b9778aafcbb360b71d70f0844fb822e7b6a4036b1a0a664a635c15f55373341348cb2faf8513696d2bab7208112f7ac30231562369387cd7911676166f
SSDEEP

12288:7xGCOXzURlbDC9K69u2m+SqOWcsQQKiY4leDDGoggH/VREG6j4Gm01bje4kHb16U:twXzU4kosOgHT

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef.dll

Resource

win7-20221111-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef.dll

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef
- Size
  
  502KB
- MD5
  
  2d8859eaec749d1deb324e3323613b92
- SHA1
  
  ca198d9246138f7fd94efac868977fd35d5b52f3
- SHA256
  
  8c64aa03f562565dd6d9cac1d7223870e6b0bd4814053d8f85b5d209860f8bef
- SHA512
  
  5b84a0b9778aafcbb360b71d70f0844fb822e7b6a4036b1a0a664a635c15f55373341348cb2faf8513696d2bab7208112f7ac30231562369387cd7911676166f
- SSDEEP
  
  12288:7xGCOXzURlbDC9K69u2m+SqOWcsQQKiY4leDDGoggH/VREG6j4Gm01bje4kHb16U:twXzU4kosOgHT
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy