Overview

overview

10

Static

static

1

d97db39f6a...8.html

windows7-x64

10

d97db39f6a...8.html

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d97db39f6a801b05851bbad2dff0fecf_JaffaCakes118

  • Size

    155KB

  • Sample

    241209-n27xhswpft

  • MD5

    d97db39f6a801b05851bbad2dff0fecf

  • SHA1

    ca005ed2a4ab0d30fda24976fbc23df3e14ca78e

  • SHA256

    ba0d2ff909e495e6ab45bcb3eb14e26e48803c96b21b29ec9be32c81f349d156

  • SHA512

    64514a4c1c159ffe7c7c09876b47f4ef42bc127663a01206236df8cdc68ae324227b15604b1ce6a2f4bd1c001ad4e9518c28ef52e158d289850d92e6d7e605c7

  • SSDEEP

    1536:iDRTCMGMt0wvYrccXeyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXAZ:itd1QZeyfkMY+BES09JXAnyrZalI+YQ

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      d97db39f6a801b05851bbad2dff0fecf_JaffaCakes118

    • Size

      155KB

    • MD5

      d97db39f6a801b05851bbad2dff0fecf

    • SHA1

      ca005ed2a4ab0d30fda24976fbc23df3e14ca78e

    • SHA256

      ba0d2ff909e495e6ab45bcb3eb14e26e48803c96b21b29ec9be32c81f349d156

    • SHA512

      64514a4c1c159ffe7c7c09876b47f4ef42bc127663a01206236df8cdc68ae324227b15604b1ce6a2f4bd1c001ad4e9518c28ef52e158d289850d92e6d7e605c7

    • SSDEEP

      1536:iDRTCMGMt0wvYrccXeyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXAZ:itd1QZeyfkMY+BES09JXAnyrZalI+YQ

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks