ramnit | 2359f9d65f70dfa3b7e5cdcbf31926b0f8c6394e769e019fd15812cde81a93de | Triage

Submit
Reports

Overview

overview

Static

static

1

84cc141b77...8.html

windows7-x64

84cc141b77...8.html

windows10-2004-x64

1

Sharing

General

Target

84cc141b7751d942291f254b927a641d_JaffaCakes118
Size

577KB
Sample

240530-t57c2sfd59
MD5

84cc141b7751d942291f254b927a641d
SHA1

c72e17f205cdf5bb2caec6f8c9dc8ba040fc2f9d
SHA256

2359f9d65f70dfa3b7e5cdcbf31926b0f8c6394e769e019fd15812cde81a93de
SHA512

9f76def4f6a4a08e73aa668335f8654a9cbc5f7d280f808b64198e53d9d619cd3688e4924d70cba29db5202378c324691e937de5ac2288beffb55f7e59fa0bc8
SSDEEP

6144:psMYod+X3oI+Ys2sMYod+X3oI+YfsMYod+X3oI+YusMYod+X3oI+Y7sMYod+X3oC:15d+X3f5d+X3V5d+X3K5d+X315d+X3h

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

84cc141b7751d942291f254b927a641d_JaffaCakes118.html

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

84cc141b7751d942291f254b927a641d_JaffaCakes118.html

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  84cc141b7751d942291f254b927a641d_JaffaCakes118
- Size
  
  577KB
- MD5
  
  84cc141b7751d942291f254b927a641d
- SHA1
  
  c72e17f205cdf5bb2caec6f8c9dc8ba040fc2f9d
- SHA256
  
  2359f9d65f70dfa3b7e5cdcbf31926b0f8c6394e769e019fd15812cde81a93de
- SHA512
  
  9f76def4f6a4a08e73aa668335f8654a9cbc5f7d280f808b64198e53d9d619cd3688e4924d70cba29db5202378c324691e937de5ac2288beffb55f7e59fa0bc8
- SSDEEP
  
  6144:psMYod+X3oI+Ys2sMYod+X3oI+YfsMYod+X3oI+YusMYod+X3oI+Y7sMYod+X3oC:15d+X3f5d+X3V5d+X3K5d+X315d+X3h
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy