ramnit | dd8f958a08e384e8165aaa143cf6b22e2894aee2d52035daea520ef94ed7e6e3 | Triage

Submit
Reports

Overview

overview

Static

static

1

66b50ae582...8.html

windows7-x64

66b50ae582...8.html

windows10-2004-x64

1

Sharing

General

Target

66b50ae582fb7ee6bad1a309a56f406b_JaffaCakes118
Size

124KB
Sample

240522-kt1axsaa9x
MD5

66b50ae582fb7ee6bad1a309a56f406b
SHA1

82cffb200cad667281636fc3b0636b4290852820
SHA256

dd8f958a08e384e8165aaa143cf6b22e2894aee2d52035daea520ef94ed7e6e3
SHA512

835636c0f0cf9e6af3749238dd23c149e0264b21161eb9a4f6814d12cc15ebd68a89b466b6ca679e7e6de86da85cc6b9bf2f6a55b8e2b66039e7dbf31e35fb4a
SSDEEP

3072:2CyHyTnGnbmjh+KBdNCyfkMY+BES09JXAnyrZalI+YQ:2CyHyTnGnbmjh+KBdNHsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

66b50ae582fb7ee6bad1a309a56f406b_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

66b50ae582fb7ee6bad1a309a56f406b_JaffaCakes118.html

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  66b50ae582fb7ee6bad1a309a56f406b_JaffaCakes118
- Size
  
  124KB
- MD5
  
  66b50ae582fb7ee6bad1a309a56f406b
- SHA1
  
  82cffb200cad667281636fc3b0636b4290852820
- SHA256
  
  dd8f958a08e384e8165aaa143cf6b22e2894aee2d52035daea520ef94ed7e6e3
- SHA512
  
  835636c0f0cf9e6af3749238dd23c149e0264b21161eb9a4f6814d12cc15ebd68a89b466b6ca679e7e6de86da85cc6b9bf2f6a55b8e2b66039e7dbf31e35fb4a
- SSDEEP
  
  3072:2CyHyTnGnbmjh+KBdNCyfkMY+BES09JXAnyrZalI+YQ:2CyHyTnGnbmjh+KBdNHsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy