ramnit | d584f8a8b805bd364189e08b41b5adba09182bc455b0ecb87e6c06b8e9c9c69a | Triage

Submit
Reports

Overview

overview

Static

static

1

941f63b4c2...8.html

windows7-x64

941f63b4c2...8.html

windows10-2004-x64

3

Sharing

General

Target

941f63b4c2673a32554f88b5c4336189_JaffaCakes118
Size

158KB
Sample

241124-mm9xws1qgr
MD5

941f63b4c2673a32554f88b5c4336189
SHA1

65285ab4c832e6eded81601c98a2a19146d49461
SHA256

d584f8a8b805bd364189e08b41b5adba09182bc455b0ecb87e6c06b8e9c9c69a
SHA512

adf555d2123bc4a04bbb313f22cf8e2ebd31f56ca6170ad4fd0764f37d997eb3706007213acb2d86323d54338fcf73c7a2981b7a0ccd6d73f65ebb19ff9c8888
SSDEEP

1536:iWRT4u8AJicb3dWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:i84FadWyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

941f63b4c2673a32554f88b5c4336189_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

941f63b4c2673a32554f88b5c4336189_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  941f63b4c2673a32554f88b5c4336189_JaffaCakes118
- Size
  
  158KB
- MD5
  
  941f63b4c2673a32554f88b5c4336189
- SHA1
  
  65285ab4c832e6eded81601c98a2a19146d49461
- SHA256
  
  d584f8a8b805bd364189e08b41b5adba09182bc455b0ecb87e6c06b8e9c9c69a
- SHA512
  
  adf555d2123bc4a04bbb313f22cf8e2ebd31f56ca6170ad4fd0764f37d997eb3706007213acb2d86323d54338fcf73c7a2981b7a0ccd6d73f65ebb19ff9c8888
- SSDEEP
  
  1536:iWRT4u8AJicb3dWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:i84FadWyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy