ramnit | 5c601d175fe10daa18467a1455864eb45a50ac2471bd2266a0e7ff84891f2076 | Triage

Submit
Reports

Overview

overview

Static

static

1

12f5d14afc...8.html

windows7-x64

12f5d14afc...8.html

windows10-2004-x64

1

Sharing

General

Target

12f5d14afcc351ef49d539734c99c8f0_JaffaCakes118
Size

190KB
Sample

240504-qvgsvsac48
MD5

12f5d14afcc351ef49d539734c99c8f0
SHA1

f782624524bb880a4ca51fa61ebceb09df2aa136
SHA256

5c601d175fe10daa18467a1455864eb45a50ac2471bd2266a0e7ff84891f2076
SHA512

8a07dd8ea3cdf0a431d8e6319c79318897b03d05a53171864444431cfdcfa50024f3bfc6a51331fadecc202e2c5b4e108c1d818348586f2b1487b816ba6efc6f
SSDEEP

3072:OBgyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFiM:OBdsMYod+X3oI+Yn86/U9jFiM

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

12f5d14afcc351ef49d539734c99c8f0_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

12f5d14afcc351ef49d539734c99c8f0_JaffaCakes118.html

Resource

win10v2004-20240419-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  12f5d14afcc351ef49d539734c99c8f0_JaffaCakes118
- Size
  
  190KB
- MD5
  
  12f5d14afcc351ef49d539734c99c8f0
- SHA1
  
  f782624524bb880a4ca51fa61ebceb09df2aa136
- SHA256
  
  5c601d175fe10daa18467a1455864eb45a50ac2471bd2266a0e7ff84891f2076
- SHA512
  
  8a07dd8ea3cdf0a431d8e6319c79318897b03d05a53171864444431cfdcfa50024f3bfc6a51331fadecc202e2c5b4e108c1d818348586f2b1487b816ba6efc6f
- SSDEEP
  
  3072:OBgyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFiM:OBdsMYod+X3oI+Yn86/U9jFiM
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy