ramnit | e0239b2f3b079c3dc73c0b1277b7669d2ec7f9e7db3ec75c42166fada8e2643d | Triage

Submit
Reports

Overview

overview

Static

static

1

92cc9f4317...8.html

windows7-x64

92cc9f4317...8.html

windows10-2004-x64

3

Sharing

General

Target

92cc9f431797f75cb796d5664e5d2963_JaffaCakes118
Size

191KB
Sample

241124-f77jyawnfv
MD5

92cc9f431797f75cb796d5664e5d2963
SHA1

4fe8dbe1e0d1cce56501b6c6948e6846b7c33f08
SHA256

e0239b2f3b079c3dc73c0b1277b7669d2ec7f9e7db3ec75c42166fada8e2643d
SHA512

17504a5cb6213b5c0528262dd13c40dac2e8ad3a7d39b417fb8b6b6f9b9e339696b468e9938aab465f3730bd97fa494e608b9adffa9cf4003bc999174aa5b58a
SSDEEP

3072:KNM/5xl9K3d8MecQaFwSUwSyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5q:KNM/5xl9K3d8MecQaFwS5sMYod+X3oIW

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

92cc9f431797f75cb796d5664e5d2963_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

92cc9f431797f75cb796d5664e5d2963_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  92cc9f431797f75cb796d5664e5d2963_JaffaCakes118
- Size
  
  191KB
- MD5
  
  92cc9f431797f75cb796d5664e5d2963
- SHA1
  
  4fe8dbe1e0d1cce56501b6c6948e6846b7c33f08
- SHA256
  
  e0239b2f3b079c3dc73c0b1277b7669d2ec7f9e7db3ec75c42166fada8e2643d
- SHA512
  
  17504a5cb6213b5c0528262dd13c40dac2e8ad3a7d39b417fb8b6b6f9b9e339696b468e9938aab465f3730bd97fa494e608b9adffa9cf4003bc999174aa5b58a
- SSDEEP
  
  3072:KNM/5xl9K3d8MecQaFwSUwSyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5q:KNM/5xl9K3d8MecQaFwS5sMYod+X3oIW
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy