ramnit | f1f5f3a8e8fc1e84b87c92b99073a923fe856524211fe32ff4fd41c35ba2604d | Triage

Submit
Reports

Overview

overview

Static

static

1

76ee94f99a...8.html

windows7-x64

76ee94f99a...8.html

windows10-2004-x64

1

Sharing

General

Target

76ee94f99a8b0bcebf49dded3db7f755_JaffaCakes118
Size

521KB
Sample

240526-1yh57see53
MD5

76ee94f99a8b0bcebf49dded3db7f755
SHA1

bea647582a3a8bac83b3b5269166290ae4d4855c
SHA256

f1f5f3a8e8fc1e84b87c92b99073a923fe856524211fe32ff4fd41c35ba2604d
SHA512

32636a5bf960cd5101c45ca8603e1ad269d9d73155dbf3b17a229b61869eaed04a68d3d63fd731b061e0ace5982d79fbfabfeaeded3281b8fc771df452f03ee6
SSDEEP

12288:j5d+X3R8mU9jFYU5d+X3R8mU9jFu5d+X3R8mU9jF1:7+Wt9BT+Wt9BM+Wt9B1

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

76ee94f99a8b0bcebf49dded3db7f755_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

76ee94f99a8b0bcebf49dded3db7f755_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  76ee94f99a8b0bcebf49dded3db7f755_JaffaCakes118
- Size
  
  521KB
- MD5
  
  76ee94f99a8b0bcebf49dded3db7f755
- SHA1
  
  bea647582a3a8bac83b3b5269166290ae4d4855c
- SHA256
  
  f1f5f3a8e8fc1e84b87c92b99073a923fe856524211fe32ff4fd41c35ba2604d
- SHA512
  
  32636a5bf960cd5101c45ca8603e1ad269d9d73155dbf3b17a229b61869eaed04a68d3d63fd731b061e0ace5982d79fbfabfeaeded3281b8fc771df452f03ee6
- SSDEEP
  
  12288:j5d+X3R8mU9jFYU5d+X3R8mU9jFu5d+X3R8mU9jF1:7+Wt9BT+Wt9BM+Wt9B1
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy