ramnit | 543de0e2910e5e6241db0f012a94a71082d3fb8ac3d6636c7d6e6ead94923131 | Triage

Submit
Reports

Overview

overview

Static

static

1

6551fc7247...8.html

windows7-x64

6551fc7247...8.html

windows10-2004-x64

1

Sharing

General

Target

6551fc72476e11961c0d0c5a9ecbf624_JaffaCakes118
Size

127KB
Sample

240522-amarksef7w
MD5

6551fc72476e11961c0d0c5a9ecbf624
SHA1

07eaa1302c20e4c22a60824ca8a2deb03de5eeca
SHA256

543de0e2910e5e6241db0f012a94a71082d3fb8ac3d6636c7d6e6ead94923131
SHA512

0009d28a7e025ebccd83758e421d440e4ac741d8851e285fed42beb3fda16d26ed223417e381892767337c71aa31dee9d998ad9cbbb922a74808ea9c3c5aaf04
SSDEEP

1536:SWCyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQ:SWCyfkMY+BES09JXAnyrZalI+Y0IRF

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6551fc72476e11961c0d0c5a9ecbf624_JaffaCakes118.html

Resource

win7-20240419-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

6551fc72476e11961c0d0c5a9ecbf624_JaffaCakes118.html

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  6551fc72476e11961c0d0c5a9ecbf624_JaffaCakes118
- Size
  
  127KB
- MD5
  
  6551fc72476e11961c0d0c5a9ecbf624
- SHA1
  
  07eaa1302c20e4c22a60824ca8a2deb03de5eeca
- SHA256
  
  543de0e2910e5e6241db0f012a94a71082d3fb8ac3d6636c7d6e6ead94923131
- SHA512
  
  0009d28a7e025ebccd83758e421d440e4ac741d8851e285fed42beb3fda16d26ed223417e381892767337c71aa31dee9d998ad9cbbb922a74808ea9c3c5aaf04
- SSDEEP
  
  1536:SWCyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQ:SWCyfkMY+BES09JXAnyrZalI+Y0IRF
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy