ramnit | 2c29afe9e5b9ddb05c0a61a441a2a6aa90c7352e79760df3773759bf65fba406 | Triage

Submit
Reports

Overview

overview

Static

static

1

d565c18e08...8.html

windows7-x64

d565c18e08...8.html

windows10-2004-x64

3

Sharing

General

Target

d565c18e087d9681af6ab12d7f2d0836_JaffaCakes118
Size

158KB
Sample

241208-fsva3atrew
MD5

d565c18e087d9681af6ab12d7f2d0836
SHA1

e28829bf1ac238a4375c07b7ed9735acd5268b6f
SHA256

2c29afe9e5b9ddb05c0a61a441a2a6aa90c7352e79760df3773759bf65fba406
SHA512

7c77f82c7d4272c6459187c005be9ada9d8d401e027968b63fb4ae9b46f0e653a53b942f3e5aa1ac3924fc6783614b80ce223c97f827d5ba4d60002f7d6f02e2
SSDEEP

1536:iURTYEM+U1wDTyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:iGqwDTyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

d565c18e087d9681af6ab12d7f2d0836_JaffaCakes118.html

Resource

win7-20240729-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

d565c18e087d9681af6ab12d7f2d0836_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  d565c18e087d9681af6ab12d7f2d0836_JaffaCakes118
- Size
  
  158KB
- MD5
  
  d565c18e087d9681af6ab12d7f2d0836
- SHA1
  
  e28829bf1ac238a4375c07b7ed9735acd5268b6f
- SHA256
  
  2c29afe9e5b9ddb05c0a61a441a2a6aa90c7352e79760df3773759bf65fba406
- SHA512
  
  7c77f82c7d4272c6459187c005be9ada9d8d401e027968b63fb4ae9b46f0e653a53b942f3e5aa1ac3924fc6783614b80ce223c97f827d5ba4d60002f7d6f02e2
- SSDEEP
  
  1536:iURTYEM+U1wDTyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:iGqwDTyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy