Overview

overview

10

Static

static

3

c0db15a901...18.dll

windows7-x64

10

c0db15a901...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    c0db15a9014a813adadb2605cfa57a44_JaffaCakes118

  • Size

    364KB

  • Sample

    240825-qt5tasycpj

  • MD5

    c0db15a9014a813adadb2605cfa57a44

  • SHA1

    c3cb061fda1b12078648cc72e265453e1ac7d779

  • SHA256

    58af4051481e13f444bdcba0f9162686afa2a28df81f309d99d1406dbc5449ad

  • SHA512

    945bd31bba98ef12a9c6ddfc856f923f5f169fe4010fd5af790b1165bb12e76ccee49c3fb1db52e950639c90c6736f9b7bfbd4f2f5305255b6fa93ddce5e77d8

  • SSDEEP

    6144:S0GmlGZIdBKjQTG6xWFrTj0zIRq8GQDXO2oDXqHsEFFAig:0GB7GqWQt2oDylAig

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      c0db15a9014a813adadb2605cfa57a44_JaffaCakes118

    • Size

      364KB

    • MD5

      c0db15a9014a813adadb2605cfa57a44

    • SHA1

      c3cb061fda1b12078648cc72e265453e1ac7d779

    • SHA256

      58af4051481e13f444bdcba0f9162686afa2a28df81f309d99d1406dbc5449ad

    • SHA512

      945bd31bba98ef12a9c6ddfc856f923f5f169fe4010fd5af790b1165bb12e76ccee49c3fb1db52e950639c90c6736f9b7bfbd4f2f5305255b6fa93ddce5e77d8

    • SSDEEP

      6144:S0GmlGZIdBKjQTG6xWFrTj0zIRq8GQDXO2oDXqHsEFFAig:0GB7GqWQt2oDylAig

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks