ramnit | c0d6b3d2b3ca7e9995228e0ca283b576084569b701f4f19cd8d530874ef20397 | Triage

Submit
Reports

Overview

overview

Static

static

1

962073d540...8.html

windows7-x64

962073d540...8.html

windows10-2004-x64

3

Sharing

General

Target

962073d54024fb1bf979779599f0b86c_JaffaCakes118
Size

157KB
Sample

241124-vv9wvswpel
MD5

962073d54024fb1bf979779599f0b86c
SHA1

bbc73f34ab313ceb957157e8caff61ca33277d8f
SHA256

c0d6b3d2b3ca7e9995228e0ca283b576084569b701f4f19cd8d530874ef20397
SHA512

86e1cd65a060adb20e76096d9b0c9c3998d0682196630e50a5575a726a4c5d94d3a251e331059ebc249a3b1b2da0bbe0b40c12402b773a6c50ae6e4560367052
SSDEEP

1536:iORTfMaJwXdwYCpyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:iEtdpyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

962073d54024fb1bf979779599f0b86c_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

962073d54024fb1bf979779599f0b86c_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  962073d54024fb1bf979779599f0b86c_JaffaCakes118
- Size
  
  157KB
- MD5
  
  962073d54024fb1bf979779599f0b86c
- SHA1
  
  bbc73f34ab313ceb957157e8caff61ca33277d8f
- SHA256
  
  c0d6b3d2b3ca7e9995228e0ca283b576084569b701f4f19cd8d530874ef20397
- SHA512
  
  86e1cd65a060adb20e76096d9b0c9c3998d0682196630e50a5575a726a4c5d94d3a251e331059ebc249a3b1b2da0bbe0b40c12402b773a6c50ae6e4560367052
- SSDEEP
  
  1536:iORTfMaJwXdwYCpyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:iEtdpyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy