Worm.Ramnit

ThreatDown is now the name of the Malwarebytes line of business products. References to Malwarebytes below reflect the amazing technology used to first identify the threat.

Short bio

Worm.Ramnit is Malwarebytes’ detection name for a specific wormthat is able to steal information from the compromised system.

Type of infection

The primary task of Worm.Ramnit is to steal information from the compromised system. It does this by downloading component files that perform particular tasks. For example, one of its components is capable of stealing cookies in order to hijack banking and social media sites. Another component is capable of giving threat actors remote access to the affected system.

Protection

Malwarebytes blocks Worm.Ramnit

Home remediation

You can use the Malwarebytes Anti-Malware Nebula console to scan endpoints.

Nebula endpoint tasks menu

Choose the Scan + Quarantine option. Afterwards you can check the Detections pageto see which threats were found.

On the Quarantine pageyou can see which threats were quarantined and restore them if necessary.

Associated threats

Virus.Ramnit

Similiar detections

Worm.RaspberryRobin Worm.Conficker Worm.Worm.Forbix Worm.PasswordStealer Worm.Qakbot Worm.Midie.Generic Worm.Agent Worm.AutoRun.FLDGen Worm.Autorun View all Worm detections >

Products

Services

Why ThreatDown

Get Help

Managed Services Terms & Conditions

Detection Details