SecurityHome.eu Virus:Win32/Ramnit.P

Home / malware PDF

Virus:Win32/Ramnit.P

First posted on 15 February 2019.
Source: Microsoft
Aliases :
Virus:Win32/Ramnit.P is also known as Win32/Ramnit.J, Virus.Win32.Nimnul.a, W32/Ramnit.I, Win32.Ramnit.Gen.2, W32/Ramnit.C, Win32.Rmnet.4, Virus.Win32.Nimnul, W32/Ramnit.a, Win32.Mgr.a, W32/Ramnit-A, PE_RAMNIT.DEN.
Explanation :
Virus:Win32/Ramnit.P is the detection for files infected by members of the Win32/Ramnit malware family. It drops and loads other malware.

It drops a file as mgr.exe, which may be detected as Trojan:Win32/Ramnit.A.

The malware launches the dropped file immediately and transfers execution of the infected file to the original code.

Analysis by Shawn Wang
Last update 15 February 2019

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Virus:Win32/Ramnit.J
Virus:Win32/Ramnit.A
Virus:Win32/Ramnit.G
Virus:Win32/Ramnit.P