ramnit | 6d72b4abd952acc23d545b14fc160c28df85978bfaaab5bf2863896fd35e66cc | Triage

Submit
Reports

Overview

overview

Static

static

1

7df9e4a9a9...8.html

windows7-x64

7df9e4a9a9...8.html

windows10-2004-x64

1

Sharing

General

Target

7df9e4a9a9f9dc3aab92f394fcbc8400_JaffaCakes118
Size

118KB
Sample

240528-xabvfagf32
MD5

7df9e4a9a9f9dc3aab92f394fcbc8400
SHA1

5fa9fef0781fada1ac9c771788878824359451a5
SHA256

6d72b4abd952acc23d545b14fc160c28df85978bfaaab5bf2863896fd35e66cc
SHA512

a7f242459ee8dda9633d9f8a74a71adf7d423fc684f336557bf8ae1e892bdd197c2d17d9163f56bd077b424766d242c6886a6a9f91f7c03b1c401df892d19974
SSDEEP

1536:S6yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQr:S6yfkMY+BES09JXAnyrZalI+YN

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

7df9e4a9a9f9dc3aab92f394fcbc8400_JaffaCakes118.html

Resource

win7-20231129-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

7df9e4a9a9f9dc3aab92f394fcbc8400_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  7df9e4a9a9f9dc3aab92f394fcbc8400_JaffaCakes118
- Size
  
  118KB
- MD5
  
  7df9e4a9a9f9dc3aab92f394fcbc8400
- SHA1
  
  5fa9fef0781fada1ac9c771788878824359451a5
- SHA256
  
  6d72b4abd952acc23d545b14fc160c28df85978bfaaab5bf2863896fd35e66cc
- SHA512
  
  a7f242459ee8dda9633d9f8a74a71adf7d423fc684f336557bf8ae1e892bdd197c2d17d9163f56bd077b424766d242c6886a6a9f91f7c03b1c401df892d19974
- SSDEEP
  
  1536:S6yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQr:S6yfkMY+BES09JXAnyrZalI+YN
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy