ramnit | 42bcccbf0d9cdbf075c8159e1ab628882e682597dbda30b9b44901bc00b94937 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

0bcd99a01c...8.html

windows7-x64

0bcd99a01c...8.html

windows10-2004-x64

1

Sharing

General

Target

0bcd99a01ccdd79d5c4caa3418577e58_JaffaCakes118
Size

235KB
Sample

240625-bw866swgmk
MD5

0bcd99a01ccdd79d5c4caa3418577e58
SHA1

77a2f1ab4d8b3d44de9080decec8cdc78f38cab9
SHA256

42bcccbf0d9cdbf075c8159e1ab628882e682597dbda30b9b44901bc00b94937
SHA512

04c638f2384b914ba203f9f74dbd0a6f66988cb5d590afbae15990c7359dffb49fd9affded3ab80574fce4429137e3509a8fbfc2a9e686dbb0be4d1c4d172b11
SSDEEP

3072:SJyfkMY+BES09JXAnyrZalI+YFyfkMY+BES09JXAnyrZalI+YQ:SssMYod+X3oI+YwsMYod+X3oI+YQ

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

0bcd99a01ccdd79d5c4caa3418577e58_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

0bcd99a01ccdd79d5c4caa3418577e58_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  0bcd99a01ccdd79d5c4caa3418577e58_JaffaCakes118
- Size
  
  235KB
- MD5
  
  0bcd99a01ccdd79d5c4caa3418577e58
- SHA1
  
  77a2f1ab4d8b3d44de9080decec8cdc78f38cab9
- SHA256
  
  42bcccbf0d9cdbf075c8159e1ab628882e682597dbda30b9b44901bc00b94937
- SHA512
  
  04c638f2384b914ba203f9f74dbd0a6f66988cb5d590afbae15990c7359dffb49fd9affded3ab80574fce4429137e3509a8fbfc2a9e686dbb0be4d1c4d172b11
- SSDEEP
  
  3072:SJyfkMY+BES09JXAnyrZalI+YFyfkMY+BES09JXAnyrZalI+YQ:SssMYod+X3oI+YwsMYod+X3oI+YQ
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy