ramnit | 0ab1efe9163a4800e391ec8ea14c1ebba9c48c2e528541fae84171c1643912af | Triage

Submit
Reports

Overview

overview

Static

static

3

71a021889c...18.exe

windows7-x64

71a021889c...18.exe

windows10-2004-x64

Sharing

General

Target

71a021889cee8dd6199d7c93346016ce_JaffaCakes118
Size

100KB
Sample

240725-24n43stflg
MD5

71a021889cee8dd6199d7c93346016ce
SHA1

ea4bfeb805a0b36450cebced6c7f0745f17bba5b
SHA256

0ab1efe9163a4800e391ec8ea14c1ebba9c48c2e528541fae84171c1643912af
SHA512

48c7d2c09f99197923b50c0cb2d0141f3b8cff0ee08468b7e56c327967e0e3e93cef9770e6804f8168e1406ce26e5ebc9d958875331a86c75b35ece2cbd7df7d
SSDEEP

1536:XQkVjEGb1BSrvnPeYJo9Vu3sQwsanTdgW/OQ/s1x3UM0+efcpsm:AkVD1BSqao9c3HwsanTdgyOxsP+f+

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

71a021889cee8dd6199d7c93346016ce_JaffaCakes118.exe

Resource

win7-20240708-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

71a021889cee8dd6199d7c93346016ce_JaffaCakes118.exe

Resource

win10v2004-20240709-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  71a021889cee8dd6199d7c93346016ce_JaffaCakes118
- Size
  
  100KB
- MD5
  
  71a021889cee8dd6199d7c93346016ce
- SHA1
  
  ea4bfeb805a0b36450cebced6c7f0745f17bba5b
- SHA256
  
  0ab1efe9163a4800e391ec8ea14c1ebba9c48c2e528541fae84171c1643912af
- SHA512
  
  48c7d2c09f99197923b50c0cb2d0141f3b8cff0ee08468b7e56c327967e0e3e93cef9770e6804f8168e1406ce26e5ebc9d958875331a86c75b35ece2cbd7df7d
- SSDEEP
  
  1536:XQkVjEGb1BSrvnPeYJo9Vu3sQwsanTdgW/OQ/s1x3UM0+efcpsm:AkVD1BSqao9c3HwsanTdgyOxsP+f+
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy