ramnit | 12f0d1f6e06be7eac0fa9736ff8364186496b1458a9cbcea2d53803f9f304e33 | Triage

Submit
Reports

Overview

overview

Static

static

1

6905d25a04...8.html

windows7-x64

6905d25a04...8.html

windows10-2004-x64

1

Sharing

General

Target

6905d25a04cf37ad57154ed123c1d88b_JaffaCakes118
Size

158KB
Sample

240522-3m96nade42
MD5

6905d25a04cf37ad57154ed123c1d88b
SHA1

1f2afd666efd1e80a840691816680031d9997c48
SHA256

12f0d1f6e06be7eac0fa9736ff8364186496b1458a9cbcea2d53803f9f304e33
SHA512

0c86f02089a893a7e51623b856ea218d1e19e7a9c2fc800fe295a96f4c0a1f70f951d9a373c197e12f52eba744865cb7d1ada387b2e73e1f755b478cd11e30d5
SSDEEP

3072:iJ38ausqByfkMY+BES09JXAnyrZalI+YQ:it8lEsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6905d25a04cf37ad57154ed123c1d88b_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6905d25a04cf37ad57154ed123c1d88b_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6905d25a04cf37ad57154ed123c1d88b_JaffaCakes118
- Size
  
  158KB
- MD5
  
  6905d25a04cf37ad57154ed123c1d88b
- SHA1
  
  1f2afd666efd1e80a840691816680031d9997c48
- SHA256
  
  12f0d1f6e06be7eac0fa9736ff8364186496b1458a9cbcea2d53803f9f304e33
- SHA512
  
  0c86f02089a893a7e51623b856ea218d1e19e7a9c2fc800fe295a96f4c0a1f70f951d9a373c197e12f52eba744865cb7d1ada387b2e73e1f755b478cd11e30d5
- SSDEEP
  
  3072:iJ38ausqByfkMY+BES09JXAnyrZalI+YQ:it8lEsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy