ramnit | 15eb345679abad6b797cb893d538c18d3f57c287377e0c01e1568075d346f287 | Triage

Submit
Reports

Overview

overview

Static

static

1

04a191c182...8.html

windows7-x64

04a191c182...8.html

windows10-2004-x64

1

Sharing

General

Target

04a191c182b2645ece4775b479a0de9d_JaffaCakes118
Size

159KB
Sample

240428-htsvqsag3t
MD5

04a191c182b2645ece4775b479a0de9d
SHA1

e9b07eab7fa80e47b3baf9b673627e1856ad5b66
SHA256

15eb345679abad6b797cb893d538c18d3f57c287377e0c01e1568075d346f287
SHA512

c1786fe2ab87f9de32507e3fc9db34b074b4bee13dba1817368f1254b5d246337fe8a2d9c0bbe5e2d4691598aca43972837be34c790160d0e624fe869a45edf1
SSDEEP

1536:iDRTKbpKIwtuKZnyFyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3p:itdIwJgFyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

04a191c182b2645ece4775b479a0de9d_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

04a191c182b2645ece4775b479a0de9d_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  04a191c182b2645ece4775b479a0de9d_JaffaCakes118
- Size
  
  159KB
- MD5
  
  04a191c182b2645ece4775b479a0de9d
- SHA1
  
  e9b07eab7fa80e47b3baf9b673627e1856ad5b66
- SHA256
  
  15eb345679abad6b797cb893d538c18d3f57c287377e0c01e1568075d346f287
- SHA512
  
  c1786fe2ab87f9de32507e3fc9db34b074b4bee13dba1817368f1254b5d246337fe8a2d9c0bbe5e2d4691598aca43972837be34c790160d0e624fe869a45edf1
- SSDEEP
  
  1536:iDRTKbpKIwtuKZnyFyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3p:itdIwJgFyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy