Overview

overview

10

Static

static

1

73ec13710b...8.html

windows7-x64

10

73ec13710b...8.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    73ec13710bf4bb274336e1d1fd60f454_JaffaCakes118

  • Size

    347KB

  • Sample

    240526-bxfk9ahh9y

  • MD5

    73ec13710bf4bb274336e1d1fd60f454

  • SHA1

    53cd99f12f8d2be359951eaeffe39df720153c39

  • SHA256

    f8339af35c4811dc3b8e246fba68f379fa06e61593b2b350b2804621a4c9fac4

  • SHA512

    16bf82d9c4d20a0783a6f2d913e1f40e08ad9001b5f3f75ffeee81d325b950266e23ffdb956aa9630e9f8d2cd7ce9abef9b9bd5406737f6bceea3725de7780db

  • SSDEEP

    6144:5sMYod+X3oI+YssMYod+X3oI+Y5sMYod+X3oI+YQ:F5d+X3Y5d+X3f5d+X3+

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      73ec13710bf4bb274336e1d1fd60f454_JaffaCakes118

    • Size

      347KB

    • MD5

      73ec13710bf4bb274336e1d1fd60f454

    • SHA1

      53cd99f12f8d2be359951eaeffe39df720153c39

    • SHA256

      f8339af35c4811dc3b8e246fba68f379fa06e61593b2b350b2804621a4c9fac4

    • SHA512

      16bf82d9c4d20a0783a6f2d913e1f40e08ad9001b5f3f75ffeee81d325b950266e23ffdb956aa9630e9f8d2cd7ce9abef9b9bd5406737f6bceea3725de7780db

    • SSDEEP

      6144:5sMYod+X3oI+YssMYod+X3oI+Y5sMYod+X3oI+YQ:F5d+X3Y5d+X3f5d+X3+

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks