Overview

overview

10

Static

static

3

89cad2333b...18.dll

windows7-x64

10

89cad2333b...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    89cad2333b6c81c0c1688d87a62f7df0_JaffaCakes118

  • Size

    139KB

  • Sample

    240811-k4tacstarn

  • MD5

    89cad2333b6c81c0c1688d87a62f7df0

  • SHA1

    fbb047ef394e232e08d849c706d1cb11f88cace2

  • SHA256

    d46b6e60d72d2d4dc100b2278ecb25da33b2768ef9e80b66c4078254cbee5353

  • SHA512

    911ebc7090978959747ddb631a5034d7d541f8161fc1713ee69cb4543dcb500e183f347124e8e664f14b63ff1d8ee6ff78434ebe93adcef13c5b75ac592fb066

  • SSDEEP

    3072:/ui32IfXBqUcicSX8mTqHLZvZsVQF6xzYSH+TsuR3qbQR:/v3Nflf8vr5vYJx0X3qI

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      89cad2333b6c81c0c1688d87a62f7df0_JaffaCakes118

    • Size

      139KB

    • MD5

      89cad2333b6c81c0c1688d87a62f7df0

    • SHA1

      fbb047ef394e232e08d849c706d1cb11f88cace2

    • SHA256

      d46b6e60d72d2d4dc100b2278ecb25da33b2768ef9e80b66c4078254cbee5353

    • SHA512

      911ebc7090978959747ddb631a5034d7d541f8161fc1713ee69cb4543dcb500e183f347124e8e664f14b63ff1d8ee6ff78434ebe93adcef13c5b75ac592fb066

    • SSDEEP

      3072:/ui32IfXBqUcicSX8mTqHLZvZsVQF6xzYSH+TsuR3qbQR:/v3Nflf8vr5vYJx0X3qI

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks