ramnit | 08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba | Triage

Submit
Reports

Overview

overview

Static

static

3

08f8497c8c...cs.dll

windows7-x64

08f8497c8c...cs.dll

windows10-2004-x64

Sharing

General

Target

08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba_NeikiAnalytics.exe
Size

196KB
Sample

240627-vfa4zsshjr
MD5

4d1cee2f97ba16ceecaabc8e787ef870
SHA1

5885cc337e795821c101b3c1e134175786acb111
SHA256

08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba
SHA512

2f0239c501b271555fe8018697405225a14fea4e96ff55888750e81d3f58b560b5997ebe09e61a02004cd8b53f10abacf45b6c466764ef8009de3e060b636fe8
SSDEEP

3072:zV30K+8F7teCMxcOmg2f45HYoehZBqFCAj9Xp9GA/5:x3TtvjM4TBnAdp7

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba_NeikiAnalytics.dll

Resource

win7-20240611-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba_NeikiAnalytics.dll

Resource

win10v2004-20240611-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba_NeikiAnalytics.exe
- Size
  
  196KB
- MD5
  
  4d1cee2f97ba16ceecaabc8e787ef870
- SHA1
  
  5885cc337e795821c101b3c1e134175786acb111
- SHA256
  
  08f8497c8c1db30dc5c0870fa6e89496e94500f3fa3d82337f5c76c9f052f4ba
- SHA512
  
  2f0239c501b271555fe8018697405225a14fea4e96ff55888750e81d3f58b560b5997ebe09e61a02004cd8b53f10abacf45b6c466764ef8009de3e060b636fe8
- SSDEEP
  
  3072:zV30K+8F7teCMxcOmg2f45HYoehZBqFCAj9Xp9GA/5:x3TtvjM4TBnAdp7
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy