ramnit | 04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

04043e6fec...6a.exe

windows7-x64

04043e6fec...6a.exe

windows10-2004-x64

Sharing

General

Target

04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a
Size

97KB
Sample

221129-vrzayshd97
MD5

825cf9d09407f36b6abce29e59604658
SHA1

030e465c86b175dc72de1a31af0d32e447bef7c9
SHA256

04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a
SHA512

48bc4da10dab4d661f4b7d900fb3fa27a6885b2cdfcc2c8a591b58e38c679789186d719fc4a57aff77a0526645dd0424c630e5e376e7d10d383d2ddd043cdb9b
SSDEEP

1536:7zZZpp48Zd0lo+4EMMyO3OexOSEowTwBjzvcmJoxDWqfqNII2Ca2B:nZSlI/HUOjSiToj7CEqfqg2B

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a.exe

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a.exe

Resource

win10v2004-20220901-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a
- Size
  
  97KB
- MD5
  
  825cf9d09407f36b6abce29e59604658
- SHA1
  
  030e465c86b175dc72de1a31af0d32e447bef7c9
- SHA256
  
  04043e6fec2c7e27b56c94eaa2c25b85b3b8407bf5966e14e12e84dff33ada6a
- SHA512
  
  48bc4da10dab4d661f4b7d900fb3fa27a6885b2cdfcc2c8a591b58e38c679789186d719fc4a57aff77a0526645dd0424c630e5e376e7d10d383d2ddd043cdb9b
- SSDEEP
  
  1536:7zZZpp48Zd0lo+4EMMyO3OexOSEowTwBjzvcmJoxDWqfqNII2Ca2B:nZSlI/HUOjSiToj7CEqfqg2B
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy