ramnit | 63e5e12a9d1a7e51a7536333ef79d8ec6ac9b3c195279d2018fa2da8cbaa8787 | Triage

Submit
Reports

Overview

overview

Static

static

1

9c9ffa0dc2...8.html

windows7-x64

9c9ffa0dc2...8.html

windows10-2004-x64

3

Sharing

General

Target

9c9ffa0dc23ebeaa7c8b3d059fc8df68_JaffaCakes118
Size

155KB
Sample

241125-txm97svrby
MD5

9c9ffa0dc23ebeaa7c8b3d059fc8df68
SHA1

95bc7d66ecef7150f0c954549a9b262a823df96c
SHA256

63e5e12a9d1a7e51a7536333ef79d8ec6ac9b3c195279d2018fa2da8cbaa8787
SHA512

f2f9380dbdaf413fac9e54d80ee54c8d87b61336785b268fd337cba71f0c494fa54976e812851a269154d579471fb95b7722a965c995838286ea6116820a8558
SSDEEP

1536:i2RTh9e6iCgcMlyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:icpg9lyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

9c9ffa0dc23ebeaa7c8b3d059fc8df68_JaffaCakes118.html

Resource

win7-20241010-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

9c9ffa0dc23ebeaa7c8b3d059fc8df68_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  9c9ffa0dc23ebeaa7c8b3d059fc8df68_JaffaCakes118
- Size
  
  155KB
- MD5
  
  9c9ffa0dc23ebeaa7c8b3d059fc8df68
- SHA1
  
  95bc7d66ecef7150f0c954549a9b262a823df96c
- SHA256
  
  63e5e12a9d1a7e51a7536333ef79d8ec6ac9b3c195279d2018fa2da8cbaa8787
- SHA512
  
  f2f9380dbdaf413fac9e54d80ee54c8d87b61336785b268fd337cba71f0c494fa54976e812851a269154d579471fb95b7722a965c995838286ea6116820a8558
- SSDEEP
  
  1536:i2RTh9e6iCgcMlyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:icpg9lyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy