ramnit | b64b63fd8621c28112520c5096b69a7641912618cdbbfdad75180c924dff6fc3 | Triage

Submit
Reports

Overview

overview

Static

static

1

9181d5ada4...8.html

windows7-x64

9181d5ada4...8.html

windows10-2004-x64

3

Sharing

General

Target

9181d5ada4f99390257f2d73a023527a_JaffaCakes118
Size

158KB
Sample

241124-amlh3szrcq
MD5

9181d5ada4f99390257f2d73a023527a
SHA1

512b926eda4cd619212cc7de6c4b29f723409694
SHA256

b64b63fd8621c28112520c5096b69a7641912618cdbbfdad75180c924dff6fc3
SHA512

5d5d8e8316e86e09ee470005ed36aacd2d04e32a31270e70bcf436bc52cd1453e1e6a44eb7b47f5b1c0a3aec5117d4fe07f72dc12f3137a46a4b446337721ffd
SSDEEP

1536:iwRTe+Hu++tqLyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:iakqLyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

9181d5ada4f99390257f2d73a023527a_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

9181d5ada4f99390257f2d73a023527a_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  9181d5ada4f99390257f2d73a023527a_JaffaCakes118
- Size
  
  158KB
- MD5
  
  9181d5ada4f99390257f2d73a023527a
- SHA1
  
  512b926eda4cd619212cc7de6c4b29f723409694
- SHA256
  
  b64b63fd8621c28112520c5096b69a7641912618cdbbfdad75180c924dff6fc3
- SHA512
  
  5d5d8e8316e86e09ee470005ed36aacd2d04e32a31270e70bcf436bc52cd1453e1e6a44eb7b47f5b1c0a3aec5117d4fe07f72dc12f3137a46a4b446337721ffd
- SSDEEP
  
  1536:iwRTe+Hu++tqLyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:iakqLyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy