ramnit | 60f0a72f02c3e93a6e286391e04f0f65a9082eb1f3235f80b27c85d73e36ca15 | Triage

Submit
Reports

Overview

overview

Static

static

1

855be7e83e...8.html

windows7-x64

855be7e83e...8.html

windows10-2004-x64

1

Sharing

General

Target

855be7e83e0857b413f07fef74a0002b_JaffaCakes118
Size

174KB
Sample

240530-31w6ysgb44
MD5

855be7e83e0857b413f07fef74a0002b
SHA1

b188b7244f6adc69d36e286a519b7dfb4d207a39
SHA256

60f0a72f02c3e93a6e286391e04f0f65a9082eb1f3235f80b27c85d73e36ca15
SHA512

b03765eec026f162818723b5a0dd6cb22d8b5f6fcec59532b8df0a6637d0531030274dd4798623847719b564cf32a4fd617e765cba8e95ce41a3463e517aabde
SSDEEP

3072:SPyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFiM:SasMYod+X3oI+Yn86/U9jFiM

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

855be7e83e0857b413f07fef74a0002b_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

855be7e83e0857b413f07fef74a0002b_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  855be7e83e0857b413f07fef74a0002b_JaffaCakes118
- Size
  
  174KB
- MD5
  
  855be7e83e0857b413f07fef74a0002b
- SHA1
  
  b188b7244f6adc69d36e286a519b7dfb4d207a39
- SHA256
  
  60f0a72f02c3e93a6e286391e04f0f65a9082eb1f3235f80b27c85d73e36ca15
- SHA512
  
  b03765eec026f162818723b5a0dd6cb22d8b5f6fcec59532b8df0a6637d0531030274dd4798623847719b564cf32a4fd617e765cba8e95ce41a3463e517aabde
- SSDEEP
  
  3072:SPyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFiM:SasMYod+X3oI+Yn86/U9jFiM
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy