ramnit | 880f6b69a962f25a068d0cd95fec493e30738f448858e2605ee5498d903180b3 | Triage

Submit
Reports

Overview

overview

Static

static

1

9fa402ea7a...a.html

windows7-x64

9fa402ea7a...a.html

windows10-2004-x64

1

Sharing

General

Target

9fa402ea7a2484272130162e80700d3a.bin
Size

872KB
Sample

240613-cflxdazhla
MD5

9fa402ea7a2484272130162e80700d3a
SHA1

ad18288bc0b564c6faa78e6aa787c3f66e430341
SHA256

880f6b69a962f25a068d0cd95fec493e30738f448858e2605ee5498d903180b3
SHA512

b76aa37686f8c9f7fd80f16b5475dc5c4c716c1dc68467b58d6b030cf59a2dd3d0faed779b2d1b85d5ea500da52509dd72b390911ad5a4826ed5d0bd2e8c825a
SSDEEP

12288:GD5d+X3vWPSmL5d+X3vWPSmIX5d+X3vWPSmx5d+X3vWPSmZ5d+X3vWPSmq:Gb+PWP/+PWPS+PWP5+PWPZ+PWPe

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

9fa402ea7a2484272130162e80700d3a.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

9fa402ea7a2484272130162e80700d3a.html

Resource

win10v2004-20240611-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  9fa402ea7a2484272130162e80700d3a.bin
- Size
  
  872KB
- MD5
  
  9fa402ea7a2484272130162e80700d3a
- SHA1
  
  ad18288bc0b564c6faa78e6aa787c3f66e430341
- SHA256
  
  880f6b69a962f25a068d0cd95fec493e30738f448858e2605ee5498d903180b3
- SHA512
  
  b76aa37686f8c9f7fd80f16b5475dc5c4c716c1dc68467b58d6b030cf59a2dd3d0faed779b2d1b85d5ea500da52509dd72b390911ad5a4826ed5d0bd2e8c825a
- SSDEEP
  
  12288:GD5d+X3vWPSmL5d+X3vWPSmIX5d+X3vWPSmx5d+X3vWPSmZ5d+X3vWPSmq:Gb+PWP/+PWPS+PWP5+PWPZ+PWPe
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy