ramnit | b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce | Triage

Submit
Reports

Overview

overview

Static

static

b8d8b12c04...ce.dll

windows7-x64

8

b8d8b12c04...ce.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce
Size

294KB
Sample

221204-msn8dafb7t
MD5

bf8bc404020858685fd039e52c22f600
SHA1

519d99f7a145d0b39d2e5c984177aebeb3c3de3c
SHA256

b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce
SHA512

eb9f688ccf0f6ab85646c9178bb1975bf431b213703cfa75f902273ad59c8a7bf127c13870678f553c3ae2432fb09f202a791e4255475a68e84daec5ee5994a8
SSDEEP

6144:vxGMku94XCzTurXzLRlbDC9K69u2m+SqOWcsQQKiY4leDDGoggH/VREG6j4Gm01+:vxGCOXzLRlbDC9K69u2m+SqOWcsQQKim

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce.dll

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce.dll

Resource

win10v2004-20221111-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce
- Size
  
  294KB
- MD5
  
  bf8bc404020858685fd039e52c22f600
- SHA1
  
  519d99f7a145d0b39d2e5c984177aebeb3c3de3c
- SHA256
  
  b8d8b12c04e988ed7ef54e154cb0f79dbd952c37bca0f4d1b7bb2997143cd1ce
- SHA512
  
  eb9f688ccf0f6ab85646c9178bb1975bf431b213703cfa75f902273ad59c8a7bf127c13870678f553c3ae2432fb09f202a791e4255475a68e84daec5ee5994a8
- SSDEEP
  
  6144:vxGMku94XCzTurXzLRlbDC9K69u2m+SqOWcsQQKiY4leDDGoggH/VREG6j4Gm01+:vxGCOXzLRlbDC9K69u2m+SqOWcsQQKim
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy