Overview

overview

10

Static

static

1

685f012ec3...8.html

windows7-x64

10

685f012ec3...8.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    685f012ec3fb3c84769e11960cf9d8ef_JaffaCakes118

  • Size

    523KB

  • Sample

    240522-x88basdg51

  • MD5

    685f012ec3fb3c84769e11960cf9d8ef

  • SHA1

    add454d339a4dee4f0646b754d0d45e7dad0c5cb

  • SHA256

    d80d3cfb836d2c14d24bba482d28948572202d437f7e4830822754f8665f7aba

  • SHA512

    c30e3ab4b0f24cb6e8ab8166c2570337abdd197e04ea7a083a397b71d8ce29932876c72d6b946fd73034b91824d2ab9f0f45eed02bc7d2505774cb00648e0279

  • SSDEEP

    12288:kH5d+X3Z8Y/FIz5d+X3Z8Y/FIE5d+X3Z8Y/FIB:k3+5r/FIr+5r/FIG+5r/FIB

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      685f012ec3fb3c84769e11960cf9d8ef_JaffaCakes118

    • Size

      523KB

    • MD5

      685f012ec3fb3c84769e11960cf9d8ef

    • SHA1

      add454d339a4dee4f0646b754d0d45e7dad0c5cb

    • SHA256

      d80d3cfb836d2c14d24bba482d28948572202d437f7e4830822754f8665f7aba

    • SHA512

      c30e3ab4b0f24cb6e8ab8166c2570337abdd197e04ea7a083a397b71d8ce29932876c72d6b946fd73034b91824d2ab9f0f45eed02bc7d2505774cb00648e0279

    • SSDEEP

      12288:kH5d+X3Z8Y/FIz5d+X3Z8Y/FIE5d+X3Z8Y/FIB:k3+5r/FIr+5r/FIG+5r/FIB

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks