ramnit | 4c9ca3fae841ecc25c382181246d030dff917119015ded84411dcd6e2f88b021 | Triage

Submit
Reports

Overview

overview

Static

static

1

8303f360f5...8.html

windows7-x64

8303f360f5...8.html

windows10-2004-x64

1

Sharing

General

Target

8303f360f507f1586ad97af254272f7b_JaffaCakes118
Size

347KB
Sample

240530-ezx5vsed6s
MD5

8303f360f507f1586ad97af254272f7b
SHA1

08a3dfc15e69f2c8a93f046b5f4936c5c2ac1a58
SHA256

4c9ca3fae841ecc25c382181246d030dff917119015ded84411dcd6e2f88b021
SHA512

88437a6fd869103a111510707a03bc2aa9df779f2e106809aad82dc1080e649ba408e72f2dfe45247c3a2799e74d93cc7ebfbdbfb752a30cd659ed8d2f5ecf91
SSDEEP

6144:8sMYod+X3oI+YcsMYod+X3oI+Y5sMYod+X3oI+YQ:q5d+X3w5d+X3f5d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

8303f360f507f1586ad97af254272f7b_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

8303f360f507f1586ad97af254272f7b_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8303f360f507f1586ad97af254272f7b_JaffaCakes118
- Size
  
  347KB
- MD5
  
  8303f360f507f1586ad97af254272f7b
- SHA1
  
  08a3dfc15e69f2c8a93f046b5f4936c5c2ac1a58
- SHA256
  
  4c9ca3fae841ecc25c382181246d030dff917119015ded84411dcd6e2f88b021
- SHA512
  
  88437a6fd869103a111510707a03bc2aa9df779f2e106809aad82dc1080e649ba408e72f2dfe45247c3a2799e74d93cc7ebfbdbfb752a30cd659ed8d2f5ecf91
- SSDEEP
  
  6144:8sMYod+X3oI+YcsMYod+X3oI+Y5sMYod+X3oI+YQ:q5d+X3w5d+X3f5d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy