ramnit | 041975af2cc8b311d244aab23bd660ebce19d3bc7a4f9de7f28082f3aaf367be | Triage

Submit
Reports

Overview

overview

Static

static

1

7f5a0ca98f...8.html

windows7-x64

7f5a0ca98f...8.html

windows10-2004-x64

1

Sharing

General

Target

7f5a0ca98fd2c200d3830631ecb4d411_JaffaCakes118
Size

875KB
Sample

240529-dz7tmagg7t
MD5

7f5a0ca98fd2c200d3830631ecb4d411
SHA1

38a9c7ab67cb131f5a3e00ca91cee664ac3b039d
SHA256

041975af2cc8b311d244aab23bd660ebce19d3bc7a4f9de7f28082f3aaf367be
SHA512

9db969545bd04e8436f328ffb56636b170311a51a8a9af853bcf7a51e1b70b39975b4755353ce83b259f08c7ec02f264f4e0e65d06f9e6d250b8cce7da47522e
SSDEEP

12288:N5d+X30eK5d+X30en5d+X30eh5d+X30e85d+X30eE:x+Ueg+UeX+Ue9+Ue++UeE

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

7f5a0ca98fd2c200d3830631ecb4d411_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

7f5a0ca98fd2c200d3830631ecb4d411_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  7f5a0ca98fd2c200d3830631ecb4d411_JaffaCakes118
- Size
  
  875KB
- MD5
  
  7f5a0ca98fd2c200d3830631ecb4d411
- SHA1
  
  38a9c7ab67cb131f5a3e00ca91cee664ac3b039d
- SHA256
  
  041975af2cc8b311d244aab23bd660ebce19d3bc7a4f9de7f28082f3aaf367be
- SHA512
  
  9db969545bd04e8436f328ffb56636b170311a51a8a9af853bcf7a51e1b70b39975b4755353ce83b259f08c7ec02f264f4e0e65d06f9e6d250b8cce7da47522e
- SSDEEP
  
  12288:N5d+X30eK5d+X30en5d+X30eh5d+X30e85d+X30eE:x+Ueg+UeX+Ue9+Ue++UeE
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy