ramnit | 507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f | Triage

Submit
Reports

Overview

overview

Static

static

3

507c025244...7f.exe

windows7-x64

507c025244...7f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f
Size

2.3MB
Sample

230830-aegvxsbg8x
MD5

ade9254d6d9424841983048f97dbf052
SHA1

03215c2b9d86896818b584285d2e72acd536a13f
SHA256

507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f
SHA512

2e607afbd889909c5e4d82d122999a1e975c0a68b4e27824966bf7e5676a0fb3ca66ca01372ad98c6542086116892b84cd7103d8856bae11b790886cc6a93a31
SSDEEP

49152:KDacZWjQI/kLq2V0oAL6p7bPxNypicHSJT4kg7:Tt2q2VfOm7bPxNgicHSI

Score

10^/10

ramnit aspackv2 banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f.exe

Resource

win7-20230712-en

ramnit aspackv2 banker spyware stealer trojan upx worm

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f.exe

Resource

win10v2004-20230703-en

ramnit aspackv2 banker spyware stealer trojan upx worm

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f
- Size
  
  2.3MB
- MD5
  
  ade9254d6d9424841983048f97dbf052
- SHA1
  
  03215c2b9d86896818b584285d2e72acd536a13f
- SHA256
  
  507c02524463ad2f14122389bb8e8bdf3a15a5054b0ed00e8065b3f87aca307f
- SHA512
  
  2e607afbd889909c5e4d82d122999a1e975c0a68b4e27824966bf7e5676a0fb3ca66ca01372ad98c6542086116892b84cd7103d8856bae11b790886cc6a93a31
- SSDEEP
  
  49152:KDacZWjQI/kLq2V0oAL6p7bPxNypicHSJT4kg7:Tt2q2VfOm7bPxNgicHSI
Score

10^/10

ramnit aspackv2 banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitaspackv2bankerspywarestealertrojanupxworm

behavioral2

ramnitaspackv2bankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy