ramnit | 9c048734b86a394e24128d88cb231084185764fe74581a4e23d14d42ecf8d300 | Triage

Submit
Reports

Overview

overview

Static

static

1

028ad07374...8.html

windows7-x64

028ad07374...8.html

windows10-2004-x64

1

Sharing

General

Target

028ad07374f9e09c2774035551e0d7ce_JaffaCakes118
Size

234KB
Sample

240427-gayffada3v
MD5

028ad07374f9e09c2774035551e0d7ce
SHA1

f40b0b506c08ce05d5bedb17d7f4221ea7223542
SHA256

9c048734b86a394e24128d88cb231084185764fe74581a4e23d14d42ecf8d300
SHA512

3da03d78b644d40ccea0ab7acc61ec745110e806330f04244fc4cb69e6e564cd4769328183a5ecca8d0dc8be7f5ced414efd5a5ba8a3f18294f3777290a48a3c
SSDEEP

3072:DMTKyfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:DMbsMYod+X3oI+YLsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

028ad07374f9e09c2774035551e0d7ce_JaffaCakes118.html

Resource

win7-20240419-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

028ad07374f9e09c2774035551e0d7ce_JaffaCakes118.html

Resource

win10v2004-20240419-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  028ad07374f9e09c2774035551e0d7ce_JaffaCakes118
- Size
  
  234KB
- MD5
  
  028ad07374f9e09c2774035551e0d7ce
- SHA1
  
  f40b0b506c08ce05d5bedb17d7f4221ea7223542
- SHA256
  
  9c048734b86a394e24128d88cb231084185764fe74581a4e23d14d42ecf8d300
- SHA512
  
  3da03d78b644d40ccea0ab7acc61ec745110e806330f04244fc4cb69e6e564cd4769328183a5ecca8d0dc8be7f5ced414efd5a5ba8a3f18294f3777290a48a3c
- SSDEEP
  
  3072:DMTKyfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:DMbsMYod+X3oI+YLsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy