ramnit | 00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771 | Triage

Submit
Reports

Overview

overview

Static

static

3

00c5559614...71.exe

windows7-x64

00c5559614...71.exe

windows10-2004-x64

Sharing

General

Target

00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771.exe
Size

142KB
Sample

250108-mb8wfswjex
MD5

f37998ab81d4affbfb5aa326ee936212
SHA1

f735dd85b42a8a8dff5bec246bdd533b3ad33c82
SHA256

00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771
SHA512

3928def554cee1de66c9f0b72f56c1afa4005fdd76fef87d119810871bc82e7f41e08ac3e98299022b779ddde3128da432f05a1b1d1b33d86b871d686bb38b91
SSDEEP

3072:k5pg4bWpSZxGfi/trlhvO5i8DRVXTBVkMe4Bi4tBEos:AprbW0DG6FEPDDkx4w4jED

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771.exe

Resource

win7-20241010-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771.exe
- Size
  
  142KB
- MD5
  
  f37998ab81d4affbfb5aa326ee936212
- SHA1
  
  f735dd85b42a8a8dff5bec246bdd533b3ad33c82
- SHA256
  
  00c55596148a3c99cbb6c94c390be78f0bd6e575615bcbe088effcae791b9771
- SHA512
  
  3928def554cee1de66c9f0b72f56c1afa4005fdd76fef87d119810871bc82e7f41e08ac3e98299022b779ddde3128da432f05a1b1d1b33d86b871d686bb38b91
- SSDEEP
  
  3072:k5pg4bWpSZxGfi/trlhvO5i8DRVXTBVkMe4Bi4tBEos:AprbW0DG6FEPDDkx4w4jED
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy