ramnit | 0b155b0625bda69da7295ab6304599daf384823756cee55a0a091931aa29b3c9 | Triage

Submit
Reports

Overview

overview

Static

static

1

057a8c7022...8.html

windows7-x64

057a8c7022...8.html

windows10-2004-x64

1

Sharing

General

Target

057a8c7022fc580978c90e0e906d1e05_JaffaCakes118
Size

339KB
Sample

240428-sme1eaae74
MD5

057a8c7022fc580978c90e0e906d1e05
SHA1

89072e392c63dfe109541cd0143574de163ac47c
SHA256

0b155b0625bda69da7295ab6304599daf384823756cee55a0a091931aa29b3c9
SHA512

cb73a25286d620e526eab31efc66608ec205c8a5f53ca5675d902611a90d38e6b4694d0ca81164480e46cd0a24f1cce43d7cec55c88f4b2c1bd10601cf7edcb9
SSDEEP

6144:SPsMYod+X3oI+YnxFZc4+sMYod+X3oI+YqsMYod+X3oI+YQ:G5d+X3pxFZc95d+X3G5d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

057a8c7022fc580978c90e0e906d1e05_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

057a8c7022fc580978c90e0e906d1e05_JaffaCakes118.html

Resource

win10v2004-20240419-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  057a8c7022fc580978c90e0e906d1e05_JaffaCakes118
- Size
  
  339KB
- MD5
  
  057a8c7022fc580978c90e0e906d1e05
- SHA1
  
  89072e392c63dfe109541cd0143574de163ac47c
- SHA256
  
  0b155b0625bda69da7295ab6304599daf384823756cee55a0a091931aa29b3c9
- SHA512
  
  cb73a25286d620e526eab31efc66608ec205c8a5f53ca5675d902611a90d38e6b4694d0ca81164480e46cd0a24f1cce43d7cec55c88f4b2c1bd10601cf7edcb9
- SSDEEP
  
  6144:SPsMYod+X3oI+YnxFZc4+sMYod+X3oI+YqsMYod+X3oI+YQ:G5d+X3pxFZc95d+X3G5d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy