ramnit | 429bea54cd0091648c8c07f447c097357c5af4153c4556c0b66f095cd4de93fa | Triage

Submit
Reports

Overview

overview

Static

static

1

81fbe8f40f...8.html

windows7-x64

81fbe8f40f...8.html

windows10-2004-x64

1

Sharing

General

Target

81fbe8f40f3b937a24faba9b28c59919_JaffaCakes118
Size

292KB
Sample

240529-1aywraad61
MD5

81fbe8f40f3b937a24faba9b28c59919
SHA1

ca8d987a88a0d604baa6763a9ffc72c71e3c9646
SHA256

429bea54cd0091648c8c07f447c097357c5af4153c4556c0b66f095cd4de93fa
SHA512

bee57881d6c31dd9b957e87fe7d40c3758a1707dc03d2f3acb060b5c5bd52baeaf6b9141aba36964be770316a8f03f419c50b8682a9dac2ee704da3b02ca9811
SSDEEP

6144:SXjsMYod+X3oI+YjsMYod+X3oI+YLsMYod+L:C35d+X3V5d+X315d+L

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

81fbe8f40f3b937a24faba9b28c59919_JaffaCakes118.html

Resource

win7-20240220-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

81fbe8f40f3b937a24faba9b28c59919_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  81fbe8f40f3b937a24faba9b28c59919_JaffaCakes118
- Size
  
  292KB
- MD5
  
  81fbe8f40f3b937a24faba9b28c59919
- SHA1
  
  ca8d987a88a0d604baa6763a9ffc72c71e3c9646
- SHA256
  
  429bea54cd0091648c8c07f447c097357c5af4153c4556c0b66f095cd4de93fa
- SHA512
  
  bee57881d6c31dd9b957e87fe7d40c3758a1707dc03d2f3acb060b5c5bd52baeaf6b9141aba36964be770316a8f03f419c50b8682a9dac2ee704da3b02ca9811
- SSDEEP
  
  6144:SXjsMYod+X3oI+YjsMYod+X3oI+YLsMYod+L:C35d+X3V5d+X315d+L
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy