ramnit | 0983a8ffb8d80c443083b98698e01b52872a72b72bd9fc51fe3ed337417cf99e | Triage

Submit
Reports

Overview

overview

Static

static

1

6bc2eb2122...8.html

windows7-x64

6bc2eb2122...8.html

windows10-2004-x64

1

Sharing

General

Target

6bc2eb2122ec85c87c78ed800d925b44_JaffaCakes118
Size

241KB
Sample

240523-wdj5jsba34
MD5

6bc2eb2122ec85c87c78ed800d925b44
SHA1

14d5acac6cd2e349112585f6cbb38593a50480b6
SHA256

0983a8ffb8d80c443083b98698e01b52872a72b72bd9fc51fe3ed337417cf99e
SHA512

01f5daac5f69d0955f305b27004a11f4bb1c983c6d72d6117f4b3d775ff17d885f9b04157d761e8d5fb6e4201370fb3ae0ff2d633c50a31ff139ae56c86937c4
SSDEEP

3072:AWldyfkMY+BES09JXAnyrZalI+Y4yfkMY+BES09JXAnyrZalI+Yp:wsMYod+X3oI+Y1sMYod+X3oI+Yp

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6bc2eb2122ec85c87c78ed800d925b44_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6bc2eb2122ec85c87c78ed800d925b44_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6bc2eb2122ec85c87c78ed800d925b44_JaffaCakes118
- Size
  
  241KB
- MD5
  
  6bc2eb2122ec85c87c78ed800d925b44
- SHA1
  
  14d5acac6cd2e349112585f6cbb38593a50480b6
- SHA256
  
  0983a8ffb8d80c443083b98698e01b52872a72b72bd9fc51fe3ed337417cf99e
- SHA512
  
  01f5daac5f69d0955f305b27004a11f4bb1c983c6d72d6117f4b3d775ff17d885f9b04157d761e8d5fb6e4201370fb3ae0ff2d633c50a31ff139ae56c86937c4
- SSDEEP
  
  3072:AWldyfkMY+BES09JXAnyrZalI+Y4yfkMY+BES09JXAnyrZalI+Yp:wsMYod+X3oI+Y1sMYod+X3oI+Yp
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy