Overview

overview

10

Static

static

1

d6dc05f6fc...8.html

windows7-x64

10

d6dc05f6fc...8.html

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6dc05f6fcd19ae6b6f2de379e7e7361_JaffaCakes118

  • Size

    155KB

  • Sample

    241208-nsz6baxlbp

  • MD5

    d6dc05f6fcd19ae6b6f2de379e7e7361

  • SHA1

    61c531435abac23fb4536c3b6cc4f1c0b419dcbc

  • SHA256

    e2b022b6316b13f85813ea52ce3c1c85c7bd33e4e098654045893467a219c898

  • SHA512

    480a72203d09dcb9c8d509751395fa8f58946bf08ff6c1eb618623cdaa5fd9f2690634a2720e86287fa4d9e822253b880e01c2fbcdd0cd42577c45ff54d4d49c

  • SSDEEP

    1536:iwRT1+8axpQ4kHnTyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3om:iajhHnTyfkMY+BES09JXAnyrZalI+YQ

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      d6dc05f6fcd19ae6b6f2de379e7e7361_JaffaCakes118

    • Size

      155KB

    • MD5

      d6dc05f6fcd19ae6b6f2de379e7e7361

    • SHA1

      61c531435abac23fb4536c3b6cc4f1c0b419dcbc

    • SHA256

      e2b022b6316b13f85813ea52ce3c1c85c7bd33e4e098654045893467a219c898

    • SHA512

      480a72203d09dcb9c8d509751395fa8f58946bf08ff6c1eb618623cdaa5fd9f2690634a2720e86287fa4d9e822253b880e01c2fbcdd0cd42577c45ff54d4d49c

    • SSDEEP

      1536:iwRT1+8axpQ4kHnTyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3om:iajhHnTyfkMY+BES09JXAnyrZalI+YQ

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks