ramnit | 18059377b3a4bbea91f5668671951a3746e75c498afb0f4eaf9cc8f76ac10051 | Triage

Submit
Reports

Overview

overview

Static

static

1

75ccbb10f4...8.html

windows7-x64

75ccbb10f4...8.html

windows10-2004-x64

1

Sharing

General

Target

75ccbb10f4b7bb2aa9a5397edbcb2cc7_JaffaCakes118
Size

457KB
Sample

240526-rxexqahf6y
MD5

75ccbb10f4b7bb2aa9a5397edbcb2cc7
SHA1

c54c74af38f098709402b6822389a1e8e75b146a
SHA256

18059377b3a4bbea91f5668671951a3746e75c498afb0f4eaf9cc8f76ac10051
SHA512

b3152bffd2bb05b1ead764ed3b66d220429235f6ba955e52a8f1b5d9ab5f550f7f766cce6d8a440e574074312196036f061dd03b8be20d218ce7aedf07b4d414
SSDEEP

6144:B7sMYod+X3oI+YksMYod+X3oI+YzsMYod+X3oI+YcsMYod+X3oI+YQ:95d+X345d+X355d+X345d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

75ccbb10f4b7bb2aa9a5397edbcb2cc7_JaffaCakes118.html

Resource

win7-20231129-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

75ccbb10f4b7bb2aa9a5397edbcb2cc7_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  75ccbb10f4b7bb2aa9a5397edbcb2cc7_JaffaCakes118
- Size
  
  457KB
- MD5
  
  75ccbb10f4b7bb2aa9a5397edbcb2cc7
- SHA1
  
  c54c74af38f098709402b6822389a1e8e75b146a
- SHA256
  
  18059377b3a4bbea91f5668671951a3746e75c498afb0f4eaf9cc8f76ac10051
- SHA512
  
  b3152bffd2bb05b1ead764ed3b66d220429235f6ba955e52a8f1b5d9ab5f550f7f766cce6d8a440e574074312196036f061dd03b8be20d218ce7aedf07b4d414
- SSDEEP
  
  6144:B7sMYod+X3oI+YksMYod+X3oI+YzsMYod+X3oI+YcsMYod+X3oI+YQ:95d+X345d+X355d+X345d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy