ramnit | 1691852a9e6138dbcd38e76f56de8665f278de92ef53e326ee7d01d81189b2df | Triage

Submit
Reports

Overview

overview

Static

static

1

94808170f5...8.html

windows7-x64

94808170f5...8.html

windows10-2004-x64

3

Sharing

General

Target

94808170f5f8ccb32f2bb635d436ce15_JaffaCakes118
Size

125KB
Sample

241124-n1837ayjbt
MD5

94808170f5f8ccb32f2bb635d436ce15
SHA1

283b5081b5945a2c600033c0270431da0c5dc74c
SHA256

1691852a9e6138dbcd38e76f56de8665f278de92ef53e326ee7d01d81189b2df
SHA512

8d63e78d026dbb14ec9afa76cfb12796fea9e51fcda0b5f271236caf78f1dfb94ac6e090d41983f8fbc89ffa913da62e6c7499b3ec865860263e0cb2b7dbb5ab
SSDEEP

1536:pPLfyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCW:pjfyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

94808170f5f8ccb32f2bb635d436ce15_JaffaCakes118.html

Resource

win7-20241010-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

94808170f5f8ccb32f2bb635d436ce15_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  94808170f5f8ccb32f2bb635d436ce15_JaffaCakes118
- Size
  
  125KB
- MD5
  
  94808170f5f8ccb32f2bb635d436ce15
- SHA1
  
  283b5081b5945a2c600033c0270431da0c5dc74c
- SHA256
  
  1691852a9e6138dbcd38e76f56de8665f278de92ef53e326ee7d01d81189b2df
- SHA512
  
  8d63e78d026dbb14ec9afa76cfb12796fea9e51fcda0b5f271236caf78f1dfb94ac6e090d41983f8fbc89ffa913da62e6c7499b3ec865860263e0cb2b7dbb5ab
- SSDEEP
  
  1536:pPLfyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCW:pjfyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy