ramnit | 660533cc700fe2b2e4a55000aa67616211e595c4868f6d50ed2ed29c5b784785 | Triage

Submit
Reports

Overview

overview

Static

static

7

dde1e68684...18.dll

windows7-x64

7

dde1e68684...18.dll

windows10-2004-x64

Sharing

General

Target

dde1e68684370a80febcdf0edae0f880_JaffaCakes118
Size

371KB
Sample

240913-hgf1eazdpf
MD5

dde1e68684370a80febcdf0edae0f880
SHA1

225b0dc93547f0328c6c7c02795c4197f6d711a5
SHA256

660533cc700fe2b2e4a55000aa67616211e595c4868f6d50ed2ed29c5b784785
SHA512

89d4c16e2bfd20ea292fff95f8d8ac9c0ff8cd99c1c17317eec3665a72563960ea09eeee020e6cfbc3a959d72a45a213c1c792a9e3af1ccec51a993b69ae94aa
SSDEEP

6144:MVdb5rXZ1KaN1C2T9LRw8nTnp1jQoLCRPGSckIuEvlxNe/tEp2Blzyl7UBRp2OEm:y5rHN1C2he+p1pWyOBfus

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

dde1e68684370a80febcdf0edae0f880_JaffaCakes118.dll

Resource

win7-20240903-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

dde1e68684370a80febcdf0edae0f880_JaffaCakes118.dll

Resource

win10v2004-20240802-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  dde1e68684370a80febcdf0edae0f880_JaffaCakes118
- Size
  
  371KB
- MD5
  
  dde1e68684370a80febcdf0edae0f880
- SHA1
  
  225b0dc93547f0328c6c7c02795c4197f6d711a5
- SHA256
  
  660533cc700fe2b2e4a55000aa67616211e595c4868f6d50ed2ed29c5b784785
- SHA512
  
  89d4c16e2bfd20ea292fff95f8d8ac9c0ff8cd99c1c17317eec3665a72563960ea09eeee020e6cfbc3a959d72a45a213c1c792a9e3af1ccec51a993b69ae94aa
- SSDEEP
  
  6144:MVdb5rXZ1KaN1C2T9LRw8nTnp1jQoLCRPGSckIuEvlxNe/tEp2Blzyl7UBRp2OEm:y5rHN1C2he+p1pWyOBfus
Score

10^/10

discovery upx ramnit banker spyware stealer trojan worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy