Triage | Malware sandboxing report by Hatching Triage

Sharing

General

Target

93d81ff76e594d315d9fb2ac8ff81e53ebb6f6544906fab902557b1f31776e55
Size

165KB
Sample

230129-2f5f6agh5y
MD5

c3afe77e488caad454a007c8ffec88fe
SHA1

6469564b97952a3b27ef1d5eb8372b670783794c
SHA256

93d81ff76e594d315d9fb2ac8ff81e53ebb6f6544906fab902557b1f31776e55
SHA512

6f147b5316f7894acbf119e6a738d5951c364409e5f0a859708a1ae72586024d4ea6d071fc84dc26418d0c0ffaf6feb8c9b96ef893a96a6731648c54ca43f2c3
SSDEEP

3072:rHalmLC1QKt43QtJv7v4OzTz3mynWvNXm9fc7XjoiTg0ur3RTeSi:rEk/Kq3KnD3rnW1hlM7el

Score

10^/10

ramnit banker spyware stealer trojan worm

Malware Config

Targets

- Target
  
  93d81ff76e594d315d9fb2ac8ff81e53ebb6f6544906fab902557b1f31776e55
- Size
  
  165KB
- MD5
  
  c3afe77e488caad454a007c8ffec88fe
- SHA1
  
  6469564b97952a3b27ef1d5eb8372b670783794c
- SHA256
  
  93d81ff76e594d315d9fb2ac8ff81e53ebb6f6544906fab902557b1f31776e55
- SHA512
  
  6f147b5316f7894acbf119e6a738d5951c364409e5f0a859708a1ae72586024d4ea6d071fc84dc26418d0c0ffaf6feb8c9b96ef893a96a6731648c54ca43f2c3
- SSDEEP
  
  3072:rHalmLC1QKt43QtJv7v4OzTz3mynWvNXm9fc7XjoiTg0ur3RTeSi:rEk/Kq3KnD3rnW1hlM7el
Score

10^/10

ramnit banker spyware stealer trojan worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanworm

behavioral2

ramnitbankerspywarestealertrojanworm