ramnit | 857e2881fa9bff65ec61cb06f39852058e34207fe27ce2dc9fd913c6596312cf | Triage

Submit
Reports

Overview

overview

Static

static

1

78bbcd70b9...8.html

windows7-x64

78bbcd70b9...8.html

windows10-2004-x64

1

Sharing

General

Target

78bbcd70b91f2e3dc420acfed291fb0c_JaffaCakes118
Size

523KB
Sample

240527-ls5ppage36
MD5

78bbcd70b91f2e3dc420acfed291fb0c
SHA1

650a3f40261e163e9c621f50f2d09cddca988769
SHA256

857e2881fa9bff65ec61cb06f39852058e34207fe27ce2dc9fd913c6596312cf
SHA512

234a6b4e828948b4b6a87bfbe0937fc82c31e9bf0acba73ce63f4e8aed16949402af750efd6062c04ace419d55e70ccf2fcbec6f0697c8e38962a28252d6d242
SSDEEP

12288:T5d+X3R8mU9jFg5d+X3R8mU9jFM5d+X3R8mU9jF3:L+Wt9Ba+Wt9Bu+Wt9B3

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

78bbcd70b91f2e3dc420acfed291fb0c_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

78bbcd70b91f2e3dc420acfed291fb0c_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  78bbcd70b91f2e3dc420acfed291fb0c_JaffaCakes118
- Size
  
  523KB
- MD5
  
  78bbcd70b91f2e3dc420acfed291fb0c
- SHA1
  
  650a3f40261e163e9c621f50f2d09cddca988769
- SHA256
  
  857e2881fa9bff65ec61cb06f39852058e34207fe27ce2dc9fd913c6596312cf
- SHA512
  
  234a6b4e828948b4b6a87bfbe0937fc82c31e9bf0acba73ce63f4e8aed16949402af750efd6062c04ace419d55e70ccf2fcbec6f0697c8e38962a28252d6d242
- SSDEEP
  
  12288:T5d+X3R8mU9jFg5d+X3R8mU9jFM5d+X3R8mU9jF3:L+Wt9Ba+Wt9Bu+Wt9B3
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy