ramnit | 3ca19a6698425df672b6487d95b6955cd4afaab0ca821cdc4d3a2937a496320a | Triage

Submit
Reports

Overview

overview

Static

static

1

70b92442ac...8.html

windows7-x64

70b92442ac...8.html

windows10-2004-x64

1

Sharing

General

Target

70b92442acace367cd8ed7fafe88ba94_JaffaCakes118
Size

187KB
Sample

240525-d3t2yada41
MD5

70b92442acace367cd8ed7fafe88ba94
SHA1

765697f82cbe890ca45699defc5d9afceff87c14
SHA256

3ca19a6698425df672b6487d95b6955cd4afaab0ca821cdc4d3a2937a496320a
SHA512

68c6cb9646c83f3353a6ca45118dfe07ae196c3c2097820cfbc6d171306563eaaa7197f5b21c8a593e0e0bcb5330b4e7e4e10f8299f4b6fcd8f0cc56c8f2307e
SSDEEP

3072:dBY+xqU/6ijbwEayfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:dBY+xqwsMYod+X3oI+YS1tA8

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

70b92442acace367cd8ed7fafe88ba94_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

70b92442acace367cd8ed7fafe88ba94_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  70b92442acace367cd8ed7fafe88ba94_JaffaCakes118
- Size
  
  187KB
- MD5
  
  70b92442acace367cd8ed7fafe88ba94
- SHA1
  
  765697f82cbe890ca45699defc5d9afceff87c14
- SHA256
  
  3ca19a6698425df672b6487d95b6955cd4afaab0ca821cdc4d3a2937a496320a
- SHA512
  
  68c6cb9646c83f3353a6ca45118dfe07ae196c3c2097820cfbc6d171306563eaaa7197f5b21c8a593e0e0bcb5330b4e7e4e10f8299f4b6fcd8f0cc56c8f2307e
- SSDEEP
  
  3072:dBY+xqU/6ijbwEayfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:dBY+xqwsMYod+X3oI+YS1tA8
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy