Overview

overview

10

Static

static

1

78c76cf2c7...8.html

windows7-x64

10

78c76cf2c7...8.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78c76cf2c71886dbc5ac3207abc18869_JaffaCakes118

  • Size

    258KB

  • Sample

    240527-l3qcrafh7w

  • MD5

    78c76cf2c71886dbc5ac3207abc18869

  • SHA1

    2400c89b4e0b132e63426f8e3ea4d40644580399

  • SHA256

    4a6c7e82529375ce37b2565c37b88a13e97bebdd5775a0b7b60bb62b87bf3ce9

  • SHA512

    572c73fdb82897dea56cfbdf7993905d63dd8bc3867457f729b374272cafebbd336cc8df73cc57f25acbc5e6d930ff2cae3b71b042d1a774b7facb81941f8127

  • SSDEEP

    3072:Uu4X67pXiZe3qBxyfkMY+BES09JXAnyrZalI+YQ:Uu40iZe3sMYod+X3oI+YQ

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      78c76cf2c71886dbc5ac3207abc18869_JaffaCakes118

    • Size

      258KB

    • MD5

      78c76cf2c71886dbc5ac3207abc18869

    • SHA1

      2400c89b4e0b132e63426f8e3ea4d40644580399

    • SHA256

      4a6c7e82529375ce37b2565c37b88a13e97bebdd5775a0b7b60bb62b87bf3ce9

    • SHA512

      572c73fdb82897dea56cfbdf7993905d63dd8bc3867457f729b374272cafebbd336cc8df73cc57f25acbc5e6d930ff2cae3b71b042d1a774b7facb81941f8127

    • SSDEEP

      3072:Uu4X67pXiZe3qBxyfkMY+BES09JXAnyrZalI+YQ:Uu40iZe3sMYod+X3oI+YQ

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks