Overview

overview

10

Static

static

3

71cbd1c0b5...18.exe

windows7-x64

10

71cbd1c0b5...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    71cbd1c0b5c674567a6f5602f0c8bae8_JaffaCakes118

  • Size

    505KB

  • Sample

    240525-nj1eqaef4z

  • MD5

    71cbd1c0b5c674567a6f5602f0c8bae8

  • SHA1

    05450d88c5249bc0cc34b92e9ab9f88b7c3b33e7

  • SHA256

    980b6ea42c82086904b7bf6bf79f67194034c635bcf5cee8da0c5049a541acbd

  • SHA512

    efc53e62d973d245c44b31c21a474070a1292f6875a0284c8f816bb234b21bec6ab1d46e692854b50a0e7fa2147fd0f062fe2163d4c70dd66536b4cf7c5d6cbb

  • SSDEEP

    6144:5USuBd2X6aaO58ssaoteaNv2C+H3A+ro49DYbPQLvf1Q/6k9s9kyb5Go3IWRtFJk:5x0qaOmBsIeCEkiUQL3DS+JRtrKKa

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      71cbd1c0b5c674567a6f5602f0c8bae8_JaffaCakes118

    • Size

      505KB

    • MD5

      71cbd1c0b5c674567a6f5602f0c8bae8

    • SHA1

      05450d88c5249bc0cc34b92e9ab9f88b7c3b33e7

    • SHA256

      980b6ea42c82086904b7bf6bf79f67194034c635bcf5cee8da0c5049a541acbd

    • SHA512

      efc53e62d973d245c44b31c21a474070a1292f6875a0284c8f816bb234b21bec6ab1d46e692854b50a0e7fa2147fd0f062fe2163d4c70dd66536b4cf7c5d6cbb

    • SSDEEP

      6144:5USuBd2X6aaO58ssaoteaNv2C+H3A+ro49DYbPQLvf1Q/6k9s9kyb5Go3IWRtFJk:5x0qaOmBsIeCEkiUQL3DS+JRtrKKa

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks