ramnit | 8f104310c9e411854f6c149053f883611244b05edd797b10d62eda784859dd73 | Triage

Submit
Reports

Overview

overview

Static

static

3

eaacf12631...18.exe

windows7-x64

7

eaacf12631...18.exe

windows10-2004-x64

Sharing

General

Target

eaacf12631b8e4320b6a1a4351c6261b_JaffaCakes118
Size

316KB
Sample

240919-f7nf3ashpb
MD5

eaacf12631b8e4320b6a1a4351c6261b
SHA1

0ad83ae72ed40310202e937d5f51acbeeea41e6d
SHA256

8f104310c9e411854f6c149053f883611244b05edd797b10d62eda784859dd73
SHA512

c68f3bfc3ebb1dd81e4dce8af5a8d0e055186bc0a81325a7c775f910a1019e0a62de8aa15f5dffaaffea639a39f7609da2e150dea064d1ca3ba8e92252b2a177
SSDEEP

6144:MMTi0+lfh+L5qe9T5q4GAFzWTBPMmC1UC6fOadhskqGnSZK4BKBHvJ:MMTi0uhMqe9ts2zWTpMmCG7P0Gn344dR

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

eaacf12631b8e4320b6a1a4351c6261b_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

eaacf12631b8e4320b6a1a4351c6261b_JaffaCakes118.exe

Resource

win10v2004-20240802-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  eaacf12631b8e4320b6a1a4351c6261b_JaffaCakes118
- Size
  
  316KB
- MD5
  
  eaacf12631b8e4320b6a1a4351c6261b
- SHA1
  
  0ad83ae72ed40310202e937d5f51acbeeea41e6d
- SHA256
  
  8f104310c9e411854f6c149053f883611244b05edd797b10d62eda784859dd73
- SHA512
  
  c68f3bfc3ebb1dd81e4dce8af5a8d0e055186bc0a81325a7c775f910a1019e0a62de8aa15f5dffaaffea639a39f7609da2e150dea064d1ca3ba8e92252b2a177
- SSDEEP
  
  6144:MMTi0+lfh+L5qe9T5q4GAFzWTBPMmC1UC6fOadhskqGnSZK4BKBHvJ:MMTi0uhMqe9ts2zWTpMmCG7P0Gn344dR
Score

10^/10

discovery ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy