ramnit | ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8 | Triage

Submit
Reports

Overview

overview

Static

static

3

ff7a0a2853...8N.exe

windows7-x64

ff7a0a2853...8N.exe

windows10-2004-x64

Sharing

General

Target

ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8N.exe
Size

110KB
Sample

241226-1jc1ms1pcy
MD5

01784276e7ba12ee7793c5a35a435400
SHA1

3bb74ed369f9b5cb104f7f018ef4e42b7208a757
SHA256

ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8
SHA512

3126de028aa9f701bb6f0800ad8e05890d8fc30703b4a98a389015cc0398de2bc6afc47be39e3f771522438944c2ee0771d8d878f6934e726ed265eb9e80b3e0
SSDEEP

1536:7+FDoKtniY1u7Nn2JFkC2styJjCKICFjC7EWisS+5mlatSfkZ:7+FDzK71QkbstyJjCKICpC72s/mlaX

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8N.exe

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8N.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8N.exe
- Size
  
  110KB
- MD5
  
  01784276e7ba12ee7793c5a35a435400
- SHA1
  
  3bb74ed369f9b5cb104f7f018ef4e42b7208a757
- SHA256
  
  ff7a0a2853e732502a707ad3d7a4ea729b65395b58a7d6153e65a2918e45edb8
- SHA512
  
  3126de028aa9f701bb6f0800ad8e05890d8fc30703b4a98a389015cc0398de2bc6afc47be39e3f771522438944c2ee0771d8d878f6934e726ed265eb9e80b3e0
- SSDEEP
  
  1536:7+FDoKtniY1u7Nn2JFkC2styJjCKICFjC7EWisS+5mlatSfkZ:7+FDzK71QkbstyJjCKICpC72s/mlaX
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy