ramnit | c49f5bf962f9dbcdaba07cf3560fd6b573d90e1d461e1bedc64bdffddc73672b | Triage

Submit
Reports

Overview

overview

Static

static

1

89afac553a...8.html

windows7-x64

89afac553a...8.html

windows10-2004-x64

1

Sharing

General

Target

89afac553adaf57b5e57498ad2e068e9_JaffaCakes118
Size

347KB
Sample

240601-htm99add6w
MD5

89afac553adaf57b5e57498ad2e068e9
SHA1

a4f131f0bea519f1415f27a5fad35c3c5d2f8a2c
SHA256

c49f5bf962f9dbcdaba07cf3560fd6b573d90e1d461e1bedc64bdffddc73672b
SHA512

16d4821c61c9eb6990527113c7abfdcd698b33674df71b617c375f77c4bab10c56b5677aa9c46837d109fa34f7ec53114970b2437934b4ac69bf8af0dab64ec0
SSDEEP

6144:bsMYod+X3oI+Yi/sMYod+X3oI+Y5sMYod+X3oI+YQ:v5d+X3I5d+X3f5d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

89afac553adaf57b5e57498ad2e068e9_JaffaCakes118.html

Resource

win7-20240220-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

89afac553adaf57b5e57498ad2e068e9_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  89afac553adaf57b5e57498ad2e068e9_JaffaCakes118
- Size
  
  347KB
- MD5
  
  89afac553adaf57b5e57498ad2e068e9
- SHA1
  
  a4f131f0bea519f1415f27a5fad35c3c5d2f8a2c
- SHA256
  
  c49f5bf962f9dbcdaba07cf3560fd6b573d90e1d461e1bedc64bdffddc73672b
- SHA512
  
  16d4821c61c9eb6990527113c7abfdcd698b33674df71b617c375f77c4bab10c56b5677aa9c46837d109fa34f7ec53114970b2437934b4ac69bf8af0dab64ec0
- SSDEEP
  
  6144:bsMYod+X3oI+Yi/sMYod+X3oI+Y5sMYod+X3oI+YQ:v5d+X3I5d+X3f5d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy