ramnit | 8c78604c034860db59111a978d3b8ab577e4898ffa622ed823081d92c60ed1c5 | Triage

Submit
Reports

Overview

overview

Static

static

1

6b89952cb6...8.html

windows7-x64

6b89952cb6...8.html

windows10-2004-x64

1

Sharing

General

Target

6b89952cb66480ed1df68a069d2d9315_JaffaCakes118
Size

136KB
Sample

240523-tvtdfagh51
MD5

6b89952cb66480ed1df68a069d2d9315
SHA1

48460fed6172ee354d65b4f23a77a5be0d32caed
SHA256

8c78604c034860db59111a978d3b8ab577e4898ffa622ed823081d92c60ed1c5
SHA512

e0709c652fb40e3878b348e613660e7aa81ff7272f085ef1a3f63b5e33d0940191a48c3c1817a2046db404f034e853d96d0315f564fad309afaa62304276f7b1
SSDEEP

1536:Sv8CbUwyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9w:S/yfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6b89952cb66480ed1df68a069d2d9315_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

6b89952cb66480ed1df68a069d2d9315_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6b89952cb66480ed1df68a069d2d9315_JaffaCakes118
- Size
  
  136KB
- MD5
  
  6b89952cb66480ed1df68a069d2d9315
- SHA1
  
  48460fed6172ee354d65b4f23a77a5be0d32caed
- SHA256
  
  8c78604c034860db59111a978d3b8ab577e4898ffa622ed823081d92c60ed1c5
- SHA512
  
  e0709c652fb40e3878b348e613660e7aa81ff7272f085ef1a3f63b5e33d0940191a48c3c1817a2046db404f034e853d96d0315f564fad309afaa62304276f7b1
- SSDEEP
  
  1536:Sv8CbUwyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9w:S/yfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy