ramnit | 10e9f8fb896c05b6de1249b84f4f663e679d8a78faa4df12727fac216fdd3fa8 | Triage

Submit
Reports

Overview

overview

Static

static

1

02c4ffffe8...8.html

windows7-x64

02c4ffffe8...8.html

windows10-2004-x64

1

Sharing

General

Target

02c4ffffe890e49e8cfe26be6bf5d99e_JaffaCakes118
Size

156KB
Sample

240427-jrm25sec35
MD5

02c4ffffe890e49e8cfe26be6bf5d99e
SHA1

20800a6ac8e08ec993cb5e22fa0d1f96402c47d3
SHA256

10e9f8fb896c05b6de1249b84f4f663e679d8a78faa4df12727fac216fdd3fa8
SHA512

68f65453b37021a3b1b3283386ade85f7d770c6566c368c49f9a0c6a590360e88822e811f7d2c2a08b98586c3e53647c45a9a020648f37f3b77dca66773b5d14
SSDEEP

3072:ijCt16rMJyfkMY+BES09JXAnyrZalI+YQ:io6gssMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

02c4ffffe890e49e8cfe26be6bf5d99e_JaffaCakes118.html

Resource

win7-20231129-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

02c4ffffe890e49e8cfe26be6bf5d99e_JaffaCakes118.html

Resource

win10v2004-20240419-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  02c4ffffe890e49e8cfe26be6bf5d99e_JaffaCakes118
- Size
  
  156KB
- MD5
  
  02c4ffffe890e49e8cfe26be6bf5d99e
- SHA1
  
  20800a6ac8e08ec993cb5e22fa0d1f96402c47d3
- SHA256
  
  10e9f8fb896c05b6de1249b84f4f663e679d8a78faa4df12727fac216fdd3fa8
- SHA512
  
  68f65453b37021a3b1b3283386ade85f7d770c6566c368c49f9a0c6a590360e88822e811f7d2c2a08b98586c3e53647c45a9a020648f37f3b77dca66773b5d14
- SSDEEP
  
  3072:ijCt16rMJyfkMY+BES09JXAnyrZalI+YQ:io6gssMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy