Overview

overview

10

Static

static

3

6449c14c35...18.dll

windows7-x64

10

6449c14c35...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6449c14c353931ebe7d356b7afc2582c_JaffaCakes118

  • Size

    140KB

  • Sample

    240722-w2f3ss1enr

  • MD5

    6449c14c353931ebe7d356b7afc2582c

  • SHA1

    ae665fbe8e63318f25227319108ddcac3402c1b7

  • SHA256

    4fd0668f8c1d4645b928e6ec5a8c142bf98b05e9487abaa0f7ec9231d2222efa

  • SHA512

    d6103fc4bf819f0e090a2d99e93389bb6d548293749f315f5996e9ddc006da91132492729bc8b507b594fd0f6de88b6ced1939f3712895ca3f509a54eade7a61

  • SSDEEP

    3072:YGd5SHHEj6na+5voJgo5GfqKnmWvQusDDbB6AeE4G:nd5Abna+68i4Qusb0XE4G

Score
10/10
ramnitbankerspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      6449c14c353931ebe7d356b7afc2582c_JaffaCakes118

    • Size

      140KB

    • MD5

      6449c14c353931ebe7d356b7afc2582c

    • SHA1

      ae665fbe8e63318f25227319108ddcac3402c1b7

    • SHA256

      4fd0668f8c1d4645b928e6ec5a8c142bf98b05e9487abaa0f7ec9231d2222efa

    • SHA512

      d6103fc4bf819f0e090a2d99e93389bb6d548293749f315f5996e9ddc006da91132492729bc8b507b594fd0f6de88b6ced1939f3712895ca3f509a54eade7a61

    • SSDEEP

      3072:YGd5SHHEj6na+5voJgo5GfqKnmWvQusDDbB6AeE4G:nd5Abna+68i4Qusb0XE4G

    Score
    10/10
    ramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks