ramnit | e83e6ec4caba4beb3554ed8a2df02165ba15b9428f712706214c05385c8914a0 | Triage

Submit
Reports

Overview

overview

Static

static

1

6a4129894b...8.html

windows7-x64

6a4129894b...8.html

windows10-2004-x64

1

Sharing

General

Target

6a4129894bd791e9465450fdfae87e49_JaffaCakes118
Size

505KB
Sample

240523-jrbdcaaa42
MD5

6a4129894bd791e9465450fdfae87e49
SHA1

fe2cea919880cca012a4ed1d22b3a8c15160058d
SHA256

e83e6ec4caba4beb3554ed8a2df02165ba15b9428f712706214c05385c8914a0
SHA512

6f427195573b87e0c71fddd8774ba8b057f931e2c7ccf662fd5f4372cb919ff01cb7a34573cdf571a95c2ea18ac6fdfc537f4cb282d88c5d9dbfced7f11f746c
SSDEEP

6144:STGsMYod+X3oI+YwsMYod+X3oI+YOsMYod+X3oI+YEsMYod+X3oI+YQ:+k5d+X305d+X3+5d+X3Y5d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6a4129894bd791e9465450fdfae87e49_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6a4129894bd791e9465450fdfae87e49_JaffaCakes118.html

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  6a4129894bd791e9465450fdfae87e49_JaffaCakes118
- Size
  
  505KB
- MD5
  
  6a4129894bd791e9465450fdfae87e49
- SHA1
  
  fe2cea919880cca012a4ed1d22b3a8c15160058d
- SHA256
  
  e83e6ec4caba4beb3554ed8a2df02165ba15b9428f712706214c05385c8914a0
- SHA512
  
  6f427195573b87e0c71fddd8774ba8b057f931e2c7ccf662fd5f4372cb919ff01cb7a34573cdf571a95c2ea18ac6fdfc537f4cb282d88c5d9dbfced7f11f746c
- SSDEEP
  
  6144:STGsMYod+X3oI+YwsMYod+X3oI+YOsMYod+X3oI+YEsMYod+X3oI+YQ:+k5d+X305d+X3+5d+X3Y5d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy