ramnit | 0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7 | Triage

Submit
Reports

Overview

overview

Static

static

3

0a07d0604f...f7.dll

windows7-x64

0a07d0604f...f7.dll

windows10-2004-x64

Sharing

General

Target

0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7.exe
Size

112KB
Sample

241211-jjgkdsyjbq
MD5

2f12368e4bc1bb72fceff8d4c8aafc91
SHA1

91a0d2ee6d39ef598c1f8fd154fceb145e4a0a2e
SHA256

0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7
SHA512

c48af5b89f241edc3380f2fc524f7e59f6a764566ce5351dcdff73bff2b9b80bef139f1b552201ce78d7400bab756e59c812a22f2068dbc599f423083d5bd5a3
SSDEEP

1536:fwKq8q9fvGBgjwtjKmbWvPnkEaH9KoMlftStqnvjI997F33W5sf1m:IKkvGB5t2mbX9wt8/5Gmf1m

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7.dll

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

13 signatures

120 seconds

Behavioral task

behavioral2

Sample

0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7.dll

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

12 signatures

120 seconds

Malware Config

Targets

- Target
  
  0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7.exe
- Size
  
  112KB
- MD5
  
  2f12368e4bc1bb72fceff8d4c8aafc91
- SHA1
  
  91a0d2ee6d39ef598c1f8fd154fceb145e4a0a2e
- SHA256
  
  0a07d0604f689d0fc9515e504205d6319383b9f8f2c88d9b016ff1ef529e2ff7
- SHA512
  
  c48af5b89f241edc3380f2fc524f7e59f6a764566ce5351dcdff73bff2b9b80bef139f1b552201ce78d7400bab756e59c812a22f2068dbc599f423083d5bd5a3
- SSDEEP
  
  1536:fwKq8q9fvGBgjwtjKmbWvPnkEaH9KoMlftStqnvjI997F33W5sf1m:IKkvGB5t2mbX9wt8/5Gmf1m
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy