ramnit | 850121c64620160614c6e497533f8c34b877b73c93445f9d11adc05203ff2e41 | Triage

Submit
Reports

Overview

overview

Static

static

1

89fec79637...8.html

windows7-x64

89fec79637...8.html

windows10-2004-x64

1

Sharing

General

Target

89fec796378c0a2b6089b0095deda636_JaffaCakes118
Size

124KB
Sample

240601-k59czahb89
MD5

89fec796378c0a2b6089b0095deda636
SHA1

5baddf850fd9fa0f9da44e01e867fb2a8ed14ff7
SHA256

850121c64620160614c6e497533f8c34b877b73c93445f9d11adc05203ff2e41
SHA512

ef676e4d29bce71f1e1eacbbb276ca0deb1802b43bb4fa65bb7c0e59a5ccc21da012d74177dd536eb8991cd76892ba7d65a6e9150b28842c5960a45622a98faf
SSDEEP

3072:Sv6ZNdd6MhyfkMY+BES09JXAnyrZalI+YQ:Sv6ZNdd6dsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

89fec796378c0a2b6089b0095deda636_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

89fec796378c0a2b6089b0095deda636_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  89fec796378c0a2b6089b0095deda636_JaffaCakes118
- Size
  
  124KB
- MD5
  
  89fec796378c0a2b6089b0095deda636
- SHA1
  
  5baddf850fd9fa0f9da44e01e867fb2a8ed14ff7
- SHA256
  
  850121c64620160614c6e497533f8c34b877b73c93445f9d11adc05203ff2e41
- SHA512
  
  ef676e4d29bce71f1e1eacbbb276ca0deb1802b43bb4fa65bb7c0e59a5ccc21da012d74177dd536eb8991cd76892ba7d65a6e9150b28842c5960a45622a98faf
- SSDEEP
  
  3072:Sv6ZNdd6MhyfkMY+BES09JXAnyrZalI+YQ:Sv6ZNdd6dsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy