ramnit | 2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cb | Triage

Submit
Reports

Overview

overview

Static

static

3

2a5f750951...bN.exe

windows7-x64

2a5f750951...bN.exe

windows10-2004-x64

Sharing

General

Target

2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cbN.exe
Size

157KB
Sample

250119-szx2ratmfw
MD5

911aaad4e458d68d128b666f32571a90
SHA1

e1e285de305eee8a53ff71f5e2ce3d89d2d09084
SHA256

2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cb
SHA512

21534e0562a4ea5e45f9d32f48aaec23063acfa97c3391181a10a620a222819c3758559de698551a4a4b79ac8103b69e0297fe6a4ac3969d854086e37a67736b
SSDEEP

3072:lr6W2wIcju6IIXlNPQmTh907Y6lP/8qkrHK:96gI4u6lXnxh65Q

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cbN.exe

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cbN.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cbN.exe
- Size
  
  157KB
- MD5
  
  911aaad4e458d68d128b666f32571a90
- SHA1
  
  e1e285de305eee8a53ff71f5e2ce3d89d2d09084
- SHA256
  
  2a5f750951e17a414d628df8ebfe4bbc67848388881ecd00b73e8adf7b8775cb
- SHA512
  
  21534e0562a4ea5e45f9d32f48aaec23063acfa97c3391181a10a620a222819c3758559de698551a4a4b79ac8103b69e0297fe6a4ac3969d854086e37a67736b
- SSDEEP
  
  3072:lr6W2wIcju6IIXlNPQmTh907Y6lP/8qkrHK:96gI4u6lXnxh65Q
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy