ramnit | 8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1 | Triage

Submit
Reports

Overview

overview

Static

static

1

8f8afde8bb...1.html

windows7-x64

8f8afde8bb...1.html

windows10-2004-x64

1

Sharing

General

Target

8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1
Size

141KB
Sample

240524-mb16lsde89
MD5

6db4aade5a731c62655ef88f25de6211
SHA1

08b97f0e2cf94a26abeb199fda85c79879e79fbc
SHA256

8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1
SHA512

bc3bc6072120bef8cb4881afda1fb2459cf45ad264e2d167b3acc075c55dd7fb3128bb984fce1cd05cf2a7b3e83deb62370066ad44fd16314beef8889d9780a6
SSDEEP

1536:NjuDTZyyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9w:NuDoyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1
- Size
  
  141KB
- MD5
  
  6db4aade5a731c62655ef88f25de6211
- SHA1
  
  08b97f0e2cf94a26abeb199fda85c79879e79fbc
- SHA256
  
  8f8afde8bbeea21bdd78bd6357c785f45809f0da39395f03eef0cc844cd05cc1
- SHA512
  
  bc3bc6072120bef8cb4881afda1fb2459cf45ad264e2d167b3acc075c55dd7fb3128bb984fce1cd05cf2a7b3e83deb62370066ad44fd16314beef8889d9780a6
- SSDEEP
  
  1536:NjuDTZyyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9w:NuDoyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy