ramnit | e30055ddabd34b31205603790eba1b4adbf0cacfda404cded20c75726504b026 | Triage

Submit
Reports

Overview

overview

Static

static

1

73f9ff3e25...8.html

windows7-x64

73f9ff3e25...8.html

windows10-2004-x64

1

Sharing

General

Target

73f9ff3e2591c4781fe87ea7e098d09e_JaffaCakes118
Size

115KB
Sample

240526-cbzbxabd56
MD5

73f9ff3e2591c4781fe87ea7e098d09e
SHA1

cd75c81ce89abd67181b577d2c49fa275b6371e6
SHA256

e30055ddabd34b31205603790eba1b4adbf0cacfda404cded20c75726504b026
SHA512

41e6398e5b51a0c62ab740d452bcb418835b4eb51e187b476e63070d78c78ef86449e8c9d807e1e8f9af5fc022270a8848372d6ed65ef8f8fb20fbfdcdd78fa2
SSDEEP

1536:S+yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQy:S+yfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

73f9ff3e2591c4781fe87ea7e098d09e_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

73f9ff3e2591c4781fe87ea7e098d09e_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  73f9ff3e2591c4781fe87ea7e098d09e_JaffaCakes118
- Size
  
  115KB
- MD5
  
  73f9ff3e2591c4781fe87ea7e098d09e
- SHA1
  
  cd75c81ce89abd67181b577d2c49fa275b6371e6
- SHA256
  
  e30055ddabd34b31205603790eba1b4adbf0cacfda404cded20c75726504b026
- SHA512
  
  41e6398e5b51a0c62ab740d452bcb418835b4eb51e187b476e63070d78c78ef86449e8c9d807e1e8f9af5fc022270a8848372d6ed65ef8f8fb20fbfdcdd78fa2
- SSDEEP
  
  1536:S+yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQy:S+yfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy