ramnit | 646d06ecb5ee1474fba089b695f718296309f332ffc768187f6b3d53d4377535 | Triage

Submit
Reports

Overview

overview

Static

static

1

6a758650ff...8.html

windows7-x64

6a758650ff...8.html

windows10-2004-x64

1

Sharing

General

Target

6a758650ff888841c6be3cf8f425bbab_JaffaCakes118
Size

158KB
Sample

240523-k8rmbsbg39
MD5

6a758650ff888841c6be3cf8f425bbab
SHA1

5636d9613852d371a37de1b4a2372d0c2c5069ac
SHA256

646d06ecb5ee1474fba089b695f718296309f332ffc768187f6b3d53d4377535
SHA512

c22d3bb6a19fed9007e489454fdfcb721d72268e17c22e7c2d7549fc827b5995ffbc579bf2039adf657a9e3207e915a2cf75c49deced283a167c1f188ec042c6
SSDEEP

1536:iERTxFIoUKNqE+AbEsvyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXu:i2Y5svyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6a758650ff888841c6be3cf8f425bbab_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6a758650ff888841c6be3cf8f425bbab_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6a758650ff888841c6be3cf8f425bbab_JaffaCakes118
- Size
  
  158KB
- MD5
  
  6a758650ff888841c6be3cf8f425bbab
- SHA1
  
  5636d9613852d371a37de1b4a2372d0c2c5069ac
- SHA256
  
  646d06ecb5ee1474fba089b695f718296309f332ffc768187f6b3d53d4377535
- SHA512
  
  c22d3bb6a19fed9007e489454fdfcb721d72268e17c22e7c2d7549fc827b5995ffbc579bf2039adf657a9e3207e915a2cf75c49deced283a167c1f188ec042c6
- SSDEEP
  
  1536:iERTxFIoUKNqE+AbEsvyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXu:i2Y5svyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy