Overview

overview

10

Static

static

1

5b0c9a1689...8.html

windows7-x64

10

5b0c9a1689...8.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5b0c9a16899c6bbc97ac39700c222464_JaffaCakes118

  • Size

    470KB

  • Sample

    240519-x4czladh41

  • MD5

    5b0c9a16899c6bbc97ac39700c222464

  • SHA1

    d37da4fc2ecf0cd50174f2a895a46bbbe82a3f9c

  • SHA256

    e0ca52c8a69e0788752e2ee714d57af0ca12207147d204e5c4324a4402138618

  • SHA512

    935fa5371498d929874e2e67432fc53dea2075f3ebd4d6ecbb0bf6ccf3614de34dd65096e0cbeddbad562596930971ba99dfe65068bb1c90cc6e4901d784c011

  • SSDEEP

    6144:S5gsMYod+X3oI+Y6tvu6xAmzM86P5sZpMFzBtug4r1GcFBU/b:YO5d+X3poCPuzmrugwG2qz

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      5b0c9a16899c6bbc97ac39700c222464_JaffaCakes118

    • Size

      470KB

    • MD5

      5b0c9a16899c6bbc97ac39700c222464

    • SHA1

      d37da4fc2ecf0cd50174f2a895a46bbbe82a3f9c

    • SHA256

      e0ca52c8a69e0788752e2ee714d57af0ca12207147d204e5c4324a4402138618

    • SHA512

      935fa5371498d929874e2e67432fc53dea2075f3ebd4d6ecbb0bf6ccf3614de34dd65096e0cbeddbad562596930971ba99dfe65068bb1c90cc6e4901d784c011

    • SSDEEP

      6144:S5gsMYod+X3oI+Y6tvu6xAmzM86P5sZpMFzBtug4r1GcFBU/b:YO5d+X3poCPuzmrugwG2qz

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks