ramnit | 151ec285a259842ff70321d675421945eece0c3d48c6189e26222c55f6481ed9 | Triage

Submit
Reports

Overview

overview

Static

static

7

3924cd917e...93.exe

windows7-x64

Sharing

General

Target

3924cd917ecc4310e2a88505cf0ddf308ccd053244ead40327747e85cf01fd93.zip
Size

2.0MB
Sample

230306-nh2w6abd5s
MD5

b625080686782664629f208d1be3fb4d
SHA1

33b3f38d5e45d55a39fb3f2b3e0f223e4954a97d
SHA256

151ec285a259842ff70321d675421945eece0c3d48c6189e26222c55f6481ed9
SHA512

7978eb345b76c6383187f87f7f69aca4c8c73e0f5f01b52448a5dbe89152e9f515922c5b3da0af551d15705196523878081ee7a2849805228c685e1cc082a856
SSDEEP

49152:WNyTPvgCwaPowfY5piQ3tJ8bcph+NBaIwjQq+1i6ohLq2BW8Ce:ky7YCXN3Qkq+MY4LvBUe

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3924cd917ecc4310e2a88505cf0ddf308ccd053244ead40327747e85cf01fd93.exe

Resource

win7-20230220-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  3924cd917ecc4310e2a88505cf0ddf308ccd053244ead40327747e85cf01fd93
- Size
  
  2.1MB
- MD5
  
  9db676fa945c1bf90cbcf22e3928bed9
- SHA1
  
  9a6970cff9ee843d2d29d345b256b4fe23670ea0
- SHA256
  
  3924cd917ecc4310e2a88505cf0ddf308ccd053244ead40327747e85cf01fd93
- SHA512
  
  0c14c42445b24de9fcdbbfc529ffdb8e76e62a01232c0fdef0e35d821fe740f23494589a8c1e05ccdb72d33ce4427307ec156e0f568edcc2b683f1cd055e507c
- SSDEEP
  
  49152:Mf4JYjtf5lHxrmFCcfQYqWrw0PJHNpLC37R0CeXWoGelvc1b:bIf5lRa70eNpq6CgWoGexib
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy