Overview

overview

10

Static

static

1

a426dfb057...8.html

windows7-x64

10

a426dfb057...8.html

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    a426dfb0574fe073c4cc3cdc592525f3_JaffaCakes118

  • Size

    461KB

  • Sample

    240613-gzsaqa1dll

  • MD5

    a426dfb0574fe073c4cc3cdc592525f3

  • SHA1

    3ff2f6eb16e10fb73dfa8258d6ee88cb64c5c21b

  • SHA256

    cda1112b148450379097b2de04ca9d4970714e30f148f55f1dfc6b95958471ee

  • SHA512

    b8d7824ad7ab78ad5dbe4e73c6d1b413b70058ef156785feca65ec8d298c2a5eb9882adb72a89b4a50ae1df329407c6e4f535d60b27423004e7cbc907e5d95fd

  • SSDEEP

    6144:BasMYod+X3oI+YUsMYod+X3oI+YzsMYod+X3oI+YcsMYod+X3oI+YQ:C5d+X3o5d+X355d+X345d+X3+

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      a426dfb0574fe073c4cc3cdc592525f3_JaffaCakes118

    • Size

      461KB

    • MD5

      a426dfb0574fe073c4cc3cdc592525f3

    • SHA1

      3ff2f6eb16e10fb73dfa8258d6ee88cb64c5c21b

    • SHA256

      cda1112b148450379097b2de04ca9d4970714e30f148f55f1dfc6b95958471ee

    • SHA512

      b8d7824ad7ab78ad5dbe4e73c6d1b413b70058ef156785feca65ec8d298c2a5eb9882adb72a89b4a50ae1df329407c6e4f535d60b27423004e7cbc907e5d95fd

    • SSDEEP

      6144:BasMYod+X3oI+YUsMYod+X3oI+YzsMYod+X3oI+YcsMYod+X3oI+YQ:C5d+X3o5d+X355d+X345d+X3+

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks