ramnit | 8838da839cbd91cc5821d4617438431a146e929eaa7a69569c138d13cd9b3d9f | Triage

Submit
Reports

Overview

overview

Static

static

1

6dcb6f9f2b...8.html

windows7-x64

6dcb6f9f2b...8.html

windows10-2004-x64

1

Sharing

General

Target

6dcb6f9f2b9f6d06184b779c9d6aff7c_JaffaCakes118
Size

2.7MB
Sample

240524-jnl1nsac98
MD5

6dcb6f9f2b9f6d06184b779c9d6aff7c
SHA1

c9977ab539600da4ecb258abed52b3e670a19e19
SHA256

8838da839cbd91cc5821d4617438431a146e929eaa7a69569c138d13cd9b3d9f
SHA512

82fabcfae01469eed8199338a1a2c432ee3ca7361069e60f7bb3ef53c39b136ec3e85e520774c2606809aa19b9dab6ffc20005de9c37f29faa4ee173db71a9eb
SSDEEP

24576:q+aDHsJ+aDHsX+aDHsT+aDHs1+aDHsT+aDHs1:4

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6dcb6f9f2b9f6d06184b779c9d6aff7c_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

6dcb6f9f2b9f6d06184b779c9d6aff7c_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6dcb6f9f2b9f6d06184b779c9d6aff7c_JaffaCakes118
- Size
  
  2.7MB
- MD5
  
  6dcb6f9f2b9f6d06184b779c9d6aff7c
- SHA1
  
  c9977ab539600da4ecb258abed52b3e670a19e19
- SHA256
  
  8838da839cbd91cc5821d4617438431a146e929eaa7a69569c138d13cd9b3d9f
- SHA512
  
  82fabcfae01469eed8199338a1a2c432ee3ca7361069e60f7bb3ef53c39b136ec3e85e520774c2606809aa19b9dab6ffc20005de9c37f29faa4ee173db71a9eb
- SSDEEP
  
  24576:q+aDHsJ+aDHsX+aDHsT+aDHs1+aDHsT+aDHs1:4
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy