Overview

overview

10

Static

static

3

22779f7d74...18.dll

windows7-x64

7

22779f7d74...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    22779f7d745d39adf61198ffe535ef0d_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240703-qeblxaxdmf

  • MD5

    22779f7d745d39adf61198ffe535ef0d

  • SHA1

    da160deab82fd187b8b0d75ce9346a68d53a5d33

  • SHA256

    3de3bbe9b94321d710bb6488c4348c84fca1531bb4897054f57953558f6efb34

  • SHA512

    56de81e8af5bdb44027d7056e43911fb9db5517741865e8db86a43ac030ea94c9cd57d89f3365db13973ef7c016d2e1d855c40bffb7139813e3f41e0512a17c6

  • SSDEEP

    12288:v9g8GZHpzAac5naAd25L5O+FQ7lW8lZ60ICPxaf6og38BfSH6gqrandxT+is3pjQ:v68+O6pvbt/wuzTB2OFDp4

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      22779f7d745d39adf61198ffe535ef0d_JaffaCakes118

    • Size

      1.2MB

    • MD5

      22779f7d745d39adf61198ffe535ef0d

    • SHA1

      da160deab82fd187b8b0d75ce9346a68d53a5d33

    • SHA256

      3de3bbe9b94321d710bb6488c4348c84fca1531bb4897054f57953558f6efb34

    • SHA512

      56de81e8af5bdb44027d7056e43911fb9db5517741865e8db86a43ac030ea94c9cd57d89f3365db13973ef7c016d2e1d855c40bffb7139813e3f41e0512a17c6

    • SSDEEP

      12288:v9g8GZHpzAac5naAd25L5O+FQ7lW8lZ60ICPxaf6og38BfSH6gqrandxT+is3pjQ:v68+O6pvbt/wuzTB2OFDp4

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks