ramnit | cdd7fb8152d814e06f07a2bd9f99d818b5ce8d9dfed72b6ff5e2208d94b8581c | Triage

Submit
Reports

Overview

overview

Static

static

1

84a601cbc3...8.html

windows7-x64

84a601cbc3...8.html

windows10-2004-x64

1

Sharing

General

Target

84a601cbc35db36199dac547730bb7d9_JaffaCakes118
Size

160KB
Sample

240530-sxbqqsda4z
MD5

84a601cbc35db36199dac547730bb7d9
SHA1

ecba80bf276e55de0c0359aa0a57d8c17a68c16f
SHA256

cdd7fb8152d814e06f07a2bd9f99d818b5ce8d9dfed72b6ff5e2208d94b8581c
SHA512

b98bf569f80c98f7189e4db109fed022173c022f3aaed32060b146dbd31d22701a3b9ce986c4750382c5d1fdc9a786d465970a8c0febe64b11371a3b40f1954d
SSDEEP

1536:iJRTZ4+npP6a7I00TFiwLjDyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP06:ivE9LjDyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

84a601cbc35db36199dac547730bb7d9_JaffaCakes118.html

Resource

win7-20231129-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

84a601cbc35db36199dac547730bb7d9_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  84a601cbc35db36199dac547730bb7d9_JaffaCakes118
- Size
  
  160KB
- MD5
  
  84a601cbc35db36199dac547730bb7d9
- SHA1
  
  ecba80bf276e55de0c0359aa0a57d8c17a68c16f
- SHA256
  
  cdd7fb8152d814e06f07a2bd9f99d818b5ce8d9dfed72b6ff5e2208d94b8581c
- SHA512
  
  b98bf569f80c98f7189e4db109fed022173c022f3aaed32060b146dbd31d22701a3b9ce986c4750382c5d1fdc9a786d465970a8c0febe64b11371a3b40f1954d
- SSDEEP
  
  1536:iJRTZ4+npP6a7I00TFiwLjDyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP06:ivE9LjDyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy