ramnit | e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349 | Triage

Submit
Reports

Overview

overview

Static

static

3

e45743cb37...49.exe

windows7-x64

e45743cb37...49.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349
Size

1.2MB
Sample

240709-ha1fgazgpm
MD5

fd619606868824ddcf7f4b608ed57438
SHA1

05b1d000c38861321c259e530a820c22d74c2821
SHA256

e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349
SHA512

a5006d0c3f6168da40763da5dd5717629ed3557f19b520141d8bb4134bae5fc99d022df639de8bf65a9154fd4b1b3de1dd9d20df2e66be83101081fdd127e842
SSDEEP

24576:y/yUbI1Fqf0+Tsq+lbBJhYut7/QRzmSzpN1CZUMa42NjbhkvCG9P:yaUUqfpvY/hxrvW4ZUv42NjtOHP

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349.exe

Resource

win7-20240704-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349.exe

Resource

win10v2004-20240704-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349
- Size
  
  1.2MB
- MD5
  
  fd619606868824ddcf7f4b608ed57438
- SHA1
  
  05b1d000c38861321c259e530a820c22d74c2821
- SHA256
  
  e45743cb37b26781254a8e87e42ca3709e33603d927e531e7d262b683e3b6349
- SHA512
  
  a5006d0c3f6168da40763da5dd5717629ed3557f19b520141d8bb4134bae5fc99d022df639de8bf65a9154fd4b1b3de1dd9d20df2e66be83101081fdd127e842
- SSDEEP
  
  24576:y/yUbI1Fqf0+Tsq+lbBJhYut7/QRzmSzpN1CZUMa42NjbhkvCG9P:yaUUqfpvY/hxrvW4ZUv42NjtOHP
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy