ramnit | 434ef988927562ae815d0ca938688d2569ab693b977a377eaf85b1d3a9607b7e | Triage

Submit
Reports

Overview

overview

Static

static

1

63cec9f4ea...8.html

windows7-x64

63cec9f4ea...8.html

windows10-2004-x64

1

Sharing

General

Target

63cec9f4eaacfb0bfb512df9b4f7648d_JaffaCakes118
Size

155KB
Sample

240521-s1k4ksaf61
MD5

63cec9f4eaacfb0bfb512df9b4f7648d
SHA1

fc65cf93138434d3ac5e7f903e1a5b0795aeadf3
SHA256

434ef988927562ae815d0ca938688d2569ab693b977a377eaf85b1d3a9607b7e
SHA512

d4f58fb4ab81ea339d98f35c6439a60e50f73e512d16da65271daf3c5646240d39599d98270a891895a3f671821f24818cecf7bc2cd9735eb58d745cfcabe02b
SSDEEP

3072:iy/baQGzSCyfkMY+BES09JXAnyrZalI+YQ:izQoSHsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

63cec9f4eaacfb0bfb512df9b4f7648d_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

63cec9f4eaacfb0bfb512df9b4f7648d_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  63cec9f4eaacfb0bfb512df9b4f7648d_JaffaCakes118
- Size
  
  155KB
- MD5
  
  63cec9f4eaacfb0bfb512df9b4f7648d
- SHA1
  
  fc65cf93138434d3ac5e7f903e1a5b0795aeadf3
- SHA256
  
  434ef988927562ae815d0ca938688d2569ab693b977a377eaf85b1d3a9607b7e
- SHA512
  
  d4f58fb4ab81ea339d98f35c6439a60e50f73e512d16da65271daf3c5646240d39599d98270a891895a3f671821f24818cecf7bc2cd9735eb58d745cfcabe02b
- SSDEEP
  
  3072:iy/baQGzSCyfkMY+BES09JXAnyrZalI+YQ:izQoSHsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy