ramnit | 6089796f866772004b8cc090f07e2debc25ff2d3b627ea3708a43e4781317e32 | Triage

Submit
Reports

Overview

overview

Static

static

1

6be3091140...8.html

windows7-x64

6be3091140...8.html

windows10-2004-x64

1

Sharing

General

Target

6be309114073efdfaa4584e208312cb5_JaffaCakes118
Size

129KB
Sample

240523-w88fmacb32
MD5

6be309114073efdfaa4584e208312cb5
SHA1

3457d5eab4f0d8aa2327a424d14b235b1d218e7e
SHA256

6089796f866772004b8cc090f07e2debc25ff2d3b627ea3708a43e4781317e32
SHA512

1a4c4bbeb9ff36ab4b0e5c4e00a04a80149b5139b07a81b60ba599c05579e2c60ef9aa335608e4c0dc3b1fd8827141f55b0af4c8c02de224a7aa524ff6a26d9e
SSDEEP

1536:STvbWcM1DgtqyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:ShMegyfkMY+BES09JXAnyrZalI+YU

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6be309114073efdfaa4584e208312cb5_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6be309114073efdfaa4584e208312cb5_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6be309114073efdfaa4584e208312cb5_JaffaCakes118
- Size
  
  129KB
- MD5
  
  6be309114073efdfaa4584e208312cb5
- SHA1
  
  3457d5eab4f0d8aa2327a424d14b235b1d218e7e
- SHA256
  
  6089796f866772004b8cc090f07e2debc25ff2d3b627ea3708a43e4781317e32
- SHA512
  
  1a4c4bbeb9ff36ab4b0e5c4e00a04a80149b5139b07a81b60ba599c05579e2c60ef9aa335608e4c0dc3b1fd8827141f55b0af4c8c02de224a7aa524ff6a26d9e
- SSDEEP
  
  1536:STvbWcM1DgtqyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:ShMegyfkMY+BES09JXAnyrZalI+YU
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy