ramnit | 185de6485bdc0b9391f30e47a6e0bd6ecf5384c6b9ecee973e206819e34d8566 | Triage

Submit
Reports

Overview

overview

Static

static

1

70c3d9658f...8.html

windows7-x64

70c3d9658f...8.html

windows10-2004-x64

1

Sharing

General

Target

70c3d9658f8ee60f3fce7162f07c02ff_JaffaCakes118
Size

158KB
Sample

240525-ebxt7ade74
MD5

70c3d9658f8ee60f3fce7162f07c02ff
SHA1

da1fc0982876e465da8187a7862a0351c5204a82
SHA256

185de6485bdc0b9391f30e47a6e0bd6ecf5384c6b9ecee973e206819e34d8566
SHA512

451f536d4a8f14a9eb5266f6f5fefb1e35ad8ad5ec6719ece034b570848c9d49691d67b70d6c8d0373050bd8720cdbd58116db126a64bbca937e1d692bde6551
SSDEEP

3072:i/xJ8XLqjyfkMY+BES09JXAnyrZalI+YQ:iZJ87qGsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

70c3d9658f8ee60f3fce7162f07c02ff_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

70c3d9658f8ee60f3fce7162f07c02ff_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  70c3d9658f8ee60f3fce7162f07c02ff_JaffaCakes118
- Size
  
  158KB
- MD5
  
  70c3d9658f8ee60f3fce7162f07c02ff
- SHA1
  
  da1fc0982876e465da8187a7862a0351c5204a82
- SHA256
  
  185de6485bdc0b9391f30e47a6e0bd6ecf5384c6b9ecee973e206819e34d8566
- SHA512
  
  451f536d4a8f14a9eb5266f6f5fefb1e35ad8ad5ec6719ece034b570848c9d49691d67b70d6c8d0373050bd8720cdbd58116db126a64bbca937e1d692bde6551
- SSDEEP
  
  3072:i/xJ8XLqjyfkMY+BES09JXAnyrZalI+YQ:iZJ87qGsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy