ramnit | 80492d3a284437e8b1397982216d61d23925d9a0d3e874bae1d2a8ad5944dd98 | Triage

Submit
Reports

Overview

overview

Static

static

1

6507164911...8.html

windows7-x64

6507164911...8.html

windows10-2004-x64

1

Sharing

General

Target

65071649119e7f71bf97c186775e3c7f_JaffaCakes118
Size

341KB
Sample

240521-2ksyxsce9v
MD5

65071649119e7f71bf97c186775e3c7f
SHA1

e5cebcc8a021caed3e191d80034bfd4b4c795f99
SHA256

80492d3a284437e8b1397982216d61d23925d9a0d3e874bae1d2a8ad5944dd98
SHA512

09221ae3c9ade2a758d5ce7d655cb56b382d4addcfa04924c9bf865487f0a9db61f2d9c81df64fe93311eaabbd9f9df7150d5d1b69a1feb0bcb3cd6f90dbf730
SSDEEP

6144:SKIsMYod+X3oI+YjQsMYod+X3oI+YZsMYod+X3oI+YQ:PW5d+X3c5d+X3L5d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

65071649119e7f71bf97c186775e3c7f_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

65071649119e7f71bf97c186775e3c7f_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  65071649119e7f71bf97c186775e3c7f_JaffaCakes118
- Size
  
  341KB
- MD5
  
  65071649119e7f71bf97c186775e3c7f
- SHA1
  
  e5cebcc8a021caed3e191d80034bfd4b4c795f99
- SHA256
  
  80492d3a284437e8b1397982216d61d23925d9a0d3e874bae1d2a8ad5944dd98
- SHA512
  
  09221ae3c9ade2a758d5ce7d655cb56b382d4addcfa04924c9bf865487f0a9db61f2d9c81df64fe93311eaabbd9f9df7150d5d1b69a1feb0bcb3cd6f90dbf730
- SSDEEP
  
  6144:SKIsMYod+X3oI+YjQsMYod+X3oI+YZsMYod+X3oI+YQ:PW5d+X3c5d+X3L5d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy