ramnit | e5f16084b458f58d7501c0d2c6ec2906c56909f366f063e3e9b615cb12e83a43 | Triage

Submit
Reports

Overview

overview

Static

static

1

78661dc69b...8.html

windows7-x64

78661dc69b...8.html

windows10-2004-x64

1

Sharing

General

Target

78661dc69bef68dc773c95015cb096d4_JaffaCakes118
Size

1.0MB
Sample

240527-jl44gadf99
MD5

78661dc69bef68dc773c95015cb096d4
SHA1

623ac006ad8424487bfe1deb22096e914717a330
SHA256

e5f16084b458f58d7501c0d2c6ec2906c56909f366f063e3e9b615cb12e83a43
SHA512

411731ef67c21f2b39c332450d3f7987bf98b9927ce25285df10495563ff60ebe6fae60f17006365e87f8ff7ff33c68700cc653fe7e5451737fd7148e347f103
SSDEEP

12288:+t5d+X3zjVtKw5d+X3zjVm5d+X3zjVk5d+X3zjVc5d+X3zjVF5d+X3zjVP:+R+Tjn+Tju+Tjs+Tj4+Tjf+TjZ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

78661dc69bef68dc773c95015cb096d4_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

78661dc69bef68dc773c95015cb096d4_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  78661dc69bef68dc773c95015cb096d4_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  78661dc69bef68dc773c95015cb096d4
- SHA1
  
  623ac006ad8424487bfe1deb22096e914717a330
- SHA256
  
  e5f16084b458f58d7501c0d2c6ec2906c56909f366f063e3e9b615cb12e83a43
- SHA512
  
  411731ef67c21f2b39c332450d3f7987bf98b9927ce25285df10495563ff60ebe6fae60f17006365e87f8ff7ff33c68700cc653fe7e5451737fd7148e347f103
- SSDEEP
  
  12288:+t5d+X3zjVtKw5d+X3zjVm5d+X3zjVk5d+X3zjVc5d+X3zjVF5d+X3zjVP:+R+Tjn+Tju+Tjs+Tj4+Tjf+TjZ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy