ramnit | 417d6bc0498f8006de5b5cdca9c7bd65673b0c52116a244454b86d2168a7fc9f | Triage

Submit
Reports

Overview

overview

Static

static

1

00b7d326aa...8.html

windows7-x64

00b7d326aa...8.html

windows10-2004-x64

1

Sharing

General

Target

00b7d326aab36f1f5677c212eaa729bd_JaffaCakes118
Size

134KB
Sample

240426-n5sl1abb99
MD5

00b7d326aab36f1f5677c212eaa729bd
SHA1

f50495c319809172df36936a24507f86cc8bc872
SHA256

417d6bc0498f8006de5b5cdca9c7bd65673b0c52116a244454b86d2168a7fc9f
SHA512

9bc6155884967b146a8e470e300e77000b5d716a3a94f884a64824e9ebfe1711fa78ae0e8de1294c8aac9e994613f8a33b5e407acbec9e2fb75a350e75a875d8
SSDEEP

3072:S00QnkMfN2yfkMY+BES09JXAnyrZalI+YQ:S0CMfhsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

00b7d326aab36f1f5677c212eaa729bd_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

00b7d326aab36f1f5677c212eaa729bd_JaffaCakes118.html

Resource

win10v2004-20240419-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  00b7d326aab36f1f5677c212eaa729bd_JaffaCakes118
- Size
  
  134KB
- MD5
  
  00b7d326aab36f1f5677c212eaa729bd
- SHA1
  
  f50495c319809172df36936a24507f86cc8bc872
- SHA256
  
  417d6bc0498f8006de5b5cdca9c7bd65673b0c52116a244454b86d2168a7fc9f
- SHA512
  
  9bc6155884967b146a8e470e300e77000b5d716a3a94f884a64824e9ebfe1711fa78ae0e8de1294c8aac9e994613f8a33b5e407acbec9e2fb75a350e75a875d8
- SSDEEP
  
  3072:S00QnkMfN2yfkMY+BES09JXAnyrZalI+YQ:S0CMfhsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy