ramnit | cf2e5eeb77c12e52ad4002ac3c8a1818ebffc33905fe35d478dc3763998af19e | Triage

Submit
Reports

Overview

overview

Static

static

3

96d16b762b...18.exe

windows7-x64

96d16b762b...18.exe

windows10-2004-x64

Sharing

General

Target

96d16b762b7e4756b2f247d17bb7ca75_JaffaCakes118
Size

88KB
Sample

241124-ye7y4swkhx
MD5

96d16b762b7e4756b2f247d17bb7ca75
SHA1

729e1b50f0553ff9561d2d1f371a8098f608ff7f
SHA256

cf2e5eeb77c12e52ad4002ac3c8a1818ebffc33905fe35d478dc3763998af19e
SHA512

7c94acce6b4f89d633ab6ac14608eaa3a78d555988f0ae42f2a83590994a30c166e6bd8f3e3919b822043c6d05bafc10a1f212d8925a9251b779e5f75552c887
SSDEEP

1536:1sR4bLpomzU97oIG9LGchbTbuxskRgepLN9I4BtChf/d:wiomzU97eSc1TbsscgmZ9J4hf

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

96d16b762b7e4756b2f247d17bb7ca75_JaffaCakes118.exe

Resource

win7-20241023-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

96d16b762b7e4756b2f247d17bb7ca75_JaffaCakes118.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  96d16b762b7e4756b2f247d17bb7ca75_JaffaCakes118
- Size
  
  88KB
- MD5
  
  96d16b762b7e4756b2f247d17bb7ca75
- SHA1
  
  729e1b50f0553ff9561d2d1f371a8098f608ff7f
- SHA256
  
  cf2e5eeb77c12e52ad4002ac3c8a1818ebffc33905fe35d478dc3763998af19e
- SHA512
  
  7c94acce6b4f89d633ab6ac14608eaa3a78d555988f0ae42f2a83590994a30c166e6bd8f3e3919b822043c6d05bafc10a1f212d8925a9251b779e5f75552c887
- SSDEEP
  
  1536:1sR4bLpomzU97oIG9LGchbTbuxskRgepLN9I4BtChf/d:wiomzU97eSc1TbsscgmZ9J4hf
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy