ramnit | fe35b1d719b1759a891385be54c64e4d6ee61b94839c0c8ece8314a2cbfe7d6b | Triage

Submit
Reports

Overview

overview

Static

static

1

8325ddfe46...8.html

windows7-x64

8325ddfe46...8.html

windows10-2004-x64

1

Sharing

General

Target

8325ddfe464482e15a689de3f1e0dd4c_JaffaCakes118
Size

250KB
Sample

240530-f2grbsha73
MD5

8325ddfe464482e15a689de3f1e0dd4c
SHA1

878aed444580aaaf0f78ebd0f02d4505b91b5f58
SHA256

fe35b1d719b1759a891385be54c64e4d6ee61b94839c0c8ece8314a2cbfe7d6b
SHA512

d2c379d94e2295e948e42f75a11f18d5b9efbcd769b51f7d51dca2215efb57d35d0054676f1fa1222935e0743a8c95731ee0cd78713baba2c60cfd1ba46371bd
SSDEEP

3072:S+6yfkMY+BES09JXAnyrZalI+YSyfkMY+BES09JXAnyrZalI+YQ:S+fsMYod+X3oI+YXsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

8325ddfe464482e15a689de3f1e0dd4c_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

8325ddfe464482e15a689de3f1e0dd4c_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8325ddfe464482e15a689de3f1e0dd4c_JaffaCakes118
- Size
  
  250KB
- MD5
  
  8325ddfe464482e15a689de3f1e0dd4c
- SHA1
  
  878aed444580aaaf0f78ebd0f02d4505b91b5f58
- SHA256
  
  fe35b1d719b1759a891385be54c64e4d6ee61b94839c0c8ece8314a2cbfe7d6b
- SHA512
  
  d2c379d94e2295e948e42f75a11f18d5b9efbcd769b51f7d51dca2215efb57d35d0054676f1fa1222935e0743a8c95731ee0cd78713baba2c60cfd1ba46371bd
- SSDEEP
  
  3072:S+6yfkMY+BES09JXAnyrZalI+YSyfkMY+BES09JXAnyrZalI+YQ:S+fsMYod+X3oI+YXsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy