ramnit | 006193845f902900152eee489a10fdccbe4527a60e3e0cf90e0fdc879efee949 | Triage

Submit
Reports

Overview

overview

Static

static

1

7eca83bae1...8.html

windows7-x64

7eca83bae1...8.html

windows10-2004-x64

1

Sharing

General

Target

7eca83bae181af950cb8360750d0e681_JaffaCakes118
Size

186KB
Sample

240528-3ls6raab93
MD5

7eca83bae181af950cb8360750d0e681
SHA1

882065ab37b0e78659fcc0ef91cbf17b676f8e3f
SHA256

006193845f902900152eee489a10fdccbe4527a60e3e0cf90e0fdc879efee949
SHA512

4e2a91b0b440d82d7a6eb617019c5d7db8885d2995aa1afa2c2afc29a17a58bcc5417df2562afe7fd787dd5331f381e10005bb13110f240d3c4a2913f45d320e
SSDEEP

3072:YQAyfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:YQ9sMYod+X3oI+YS1tA8

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

7eca83bae181af950cb8360750d0e681_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

7eca83bae181af950cb8360750d0e681_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  7eca83bae181af950cb8360750d0e681_JaffaCakes118
- Size
  
  186KB
- MD5
  
  7eca83bae181af950cb8360750d0e681
- SHA1
  
  882065ab37b0e78659fcc0ef91cbf17b676f8e3f
- SHA256
  
  006193845f902900152eee489a10fdccbe4527a60e3e0cf90e0fdc879efee949
- SHA512
  
  4e2a91b0b440d82d7a6eb617019c5d7db8885d2995aa1afa2c2afc29a17a58bcc5417df2562afe7fd787dd5331f381e10005bb13110f240d3c4a2913f45d320e
- SSDEEP
  
  3072:YQAyfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:YQ9sMYod+X3oI+YS1tA8
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy