Overview

overview

10

Static

static

3

69401ed26c...18.dll

windows7-x64

10

69401ed26c...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69401ed26c9645516e2691280031cc54_JaffaCakes118

  • Size

    136KB

  • Sample

    240523-bkqkpagc55

  • MD5

    69401ed26c9645516e2691280031cc54

  • SHA1

    2f7dc89ebffae26f56ade813015a78d88ce1c182

  • SHA256

    aedd8452f7cf6f7474ab538dd2529e4df534bde9b8c0f09b125729b16903c59f

  • SHA512

    a2446fc20b2091c43e90c4ce018d0bbe1cb91881dca123433e4e65e4bcf567969a20bf2d4b0288cca551c9b885cb747d642098c63e329fd3e71eb93fee34360c

  • SSDEEP

    3072:zGs3At+HPl1zOOwsl17l+xYYydFIYQ60FB04JS:zPZvl1KOn8xryrwB04U

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      69401ed26c9645516e2691280031cc54_JaffaCakes118

    • Size

      136KB

    • MD5

      69401ed26c9645516e2691280031cc54

    • SHA1

      2f7dc89ebffae26f56ade813015a78d88ce1c182

    • SHA256

      aedd8452f7cf6f7474ab538dd2529e4df534bde9b8c0f09b125729b16903c59f

    • SHA512

      a2446fc20b2091c43e90c4ce018d0bbe1cb91881dca123433e4e65e4bcf567969a20bf2d4b0288cca551c9b885cb747d642098c63e329fd3e71eb93fee34360c

    • SSDEEP

      3072:zGs3At+HPl1zOOwsl17l+xYYydFIYQ60FB04JS:zPZvl1KOn8xryrwB04U

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks