ramnit | be76dd25ca02c03bdfd1830e82e147320aae1a7d47ca5eb3b7b207736a76099d | Triage

Submit
Reports

Overview

overview

Static

static

1

69c6f14c52...8.html

windows7-x64

69c6f14c52...8.html

windows10-2004-x64

1

Sharing

General

Target

69c6f14c52e401f4935837368f3aaa29_JaffaCakes118
Size

189KB
Sample

240523-ff5k9sec7z
MD5

69c6f14c52e401f4935837368f3aaa29
SHA1

fccf7c332d6a4623bdc40c2082940305f198eb0c
SHA256

be76dd25ca02c03bdfd1830e82e147320aae1a7d47ca5eb3b7b207736a76099d
SHA512

2773244909c64285659ffe2fb240a187588a59291221c2166310d3ef468de059f481f81ed8224a6b225040f7c0ca1cacfcb1dca5df16d6bb8dbb99ec520f4060
SSDEEP

3072:yyfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:3sMYod+X3oI+YS1tA8

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

69c6f14c52e401f4935837368f3aaa29_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

69c6f14c52e401f4935837368f3aaa29_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  69c6f14c52e401f4935837368f3aaa29_JaffaCakes118
- Size
  
  189KB
- MD5
  
  69c6f14c52e401f4935837368f3aaa29
- SHA1
  
  fccf7c332d6a4623bdc40c2082940305f198eb0c
- SHA256
  
  be76dd25ca02c03bdfd1830e82e147320aae1a7d47ca5eb3b7b207736a76099d
- SHA512
  
  2773244909c64285659ffe2fb240a187588a59291221c2166310d3ef468de059f481f81ed8224a6b225040f7c0ca1cacfcb1dca5df16d6bb8dbb99ec520f4060
- SSDEEP
  
  3072:yyfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:3sMYod+X3oI+YS1tA8
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy