ramnit | ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82 | Triage

Submit
Reports

Overview

overview

Static

static

3

ab1cef6b84...82.exe

windows7-x64

ab1cef6b84...82.exe

windows10-2004-x64

Sharing

General

Target

ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82
Size

1.1MB
Sample

250122-hpsdeavjar
MD5

477e0a0b095713dc9f38e65e2842cd83
SHA1

677c8ba9a314ed70bee73c57955b4de1edb54c67
SHA256

ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82
SHA512

ebf2571b2b9898bd0c1a12dbd34eca58ce8d89bf3bf54ae35e06a31aade262ea9c1c81f31c3ac6a369eff710d7c87bb84c573abe3dec7c8e31527e6ade30e29e
SSDEEP

24576:lKnxgrmT26nNwmlH2YmiXFKZTXQ6NmCGjhbdhV:sAmTDnK+2YmiXgZTrqbdhV

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82.exe

Resource

win7-20241023-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82
- Size
  
  1.1MB
- MD5
  
  477e0a0b095713dc9f38e65e2842cd83
- SHA1
  
  677c8ba9a314ed70bee73c57955b4de1edb54c67
- SHA256
  
  ab1cef6b84b0d87e1e830d23b8b2449aede977ef541ab9631ca73aa0fa548e82
- SHA512
  
  ebf2571b2b9898bd0c1a12dbd34eca58ce8d89bf3bf54ae35e06a31aade262ea9c1c81f31c3ac6a369eff710d7c87bb84c573abe3dec7c8e31527e6ade30e29e
- SSDEEP
  
  24576:lKnxgrmT26nNwmlH2YmiXFKZTXQ6NmCGjhbdhV:sAmTDnK+2YmiXgZTrqbdhV
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy