ramnit | 5fd008e8c7a6cb88c84704686f168f4e9620f10a3eae5fed4c0c6c6c651f64df | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

2eb49505fc...8.html

windows7-x64

2eb49505fc...8.html

windows10-2004-x64

1

Sharing

General

Target

2eb49505fcb6759be219e0c270dd0c4d_JaffaCakes118
Size

269KB
Sample

240510-mpcp6shg3w
MD5

2eb49505fcb6759be219e0c270dd0c4d
SHA1

b6806123aa45cedacf3a1d4bf069e53ed05f5b9a
SHA256

5fd008e8c7a6cb88c84704686f168f4e9620f10a3eae5fed4c0c6c6c651f64df
SHA512

97ff9cc78e2b2f41e3be1bda944f5e6d17afaf57c327f459fe8553040239f568bfbecef8d7acfda6798f34e6a246dbea2090bf3e822f96c9a20698cdcc56f151
SSDEEP

6144:SpsMYod+X3oI+YMsMYod+X3oI+Y5C/7FmG:E5d+X3s5d+X3jC/YG

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

2eb49505fcb6759be219e0c270dd0c4d_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

2eb49505fcb6759be219e0c270dd0c4d_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2eb49505fcb6759be219e0c270dd0c4d_JaffaCakes118
- Size
  
  269KB
- MD5
  
  2eb49505fcb6759be219e0c270dd0c4d
- SHA1
  
  b6806123aa45cedacf3a1d4bf069e53ed05f5b9a
- SHA256
  
  5fd008e8c7a6cb88c84704686f168f4e9620f10a3eae5fed4c0c6c6c651f64df
- SHA512
  
  97ff9cc78e2b2f41e3be1bda944f5e6d17afaf57c327f459fe8553040239f568bfbecef8d7acfda6798f34e6a246dbea2090bf3e822f96c9a20698cdcc56f151
- SSDEEP
  
  6144:SpsMYod+X3oI+YMsMYod+X3oI+Y5C/7FmG:E5d+X3s5d+X3jC/YG
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy