Overview

overview

10

Static

static

3

d9ddeb1469...18.exe

windows7-x64

10

d9ddeb1469...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d9ddeb1469426da75f9be466fd7f633b_JaffaCakes118

  • Size

    274KB

  • Sample

    241209-qvapjsyrct

  • MD5

    d9ddeb1469426da75f9be466fd7f633b

  • SHA1

    421452c775270f419a7c99039f3c609c50fe922f

  • SHA256

    876bae962c056965896c668dd4d10ca0a4a004197cfdb1364ae0de28413153ca

  • SHA512

    9f3400fa9de3e076d97259995b4ef14e6c7eea62f55d69befa531d83b85bb536c5b7c391505fe87ea80c7ea68cdfb3935033f47e0f39e7108acccee76efd30e2

  • SSDEEP

    3072:PuyzghIGeQeWuRjUYxV2wbJ5Bd234AIEa/RougHdYa9EAmyIlcNFWbIa0RpjIwHJ:P9VbpUYxV2w0qEIaCAhlIC/7Nr

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      d9ddeb1469426da75f9be466fd7f633b_JaffaCakes118

    • Size

      274KB

    • MD5

      d9ddeb1469426da75f9be466fd7f633b

    • SHA1

      421452c775270f419a7c99039f3c609c50fe922f

    • SHA256

      876bae962c056965896c668dd4d10ca0a4a004197cfdb1364ae0de28413153ca

    • SHA512

      9f3400fa9de3e076d97259995b4ef14e6c7eea62f55d69befa531d83b85bb536c5b7c391505fe87ea80c7ea68cdfb3935033f47e0f39e7108acccee76efd30e2

    • SSDEEP

      3072:PuyzghIGeQeWuRjUYxV2wbJ5Bd234AIEa/RougHdYa9EAmyIlcNFWbIa0RpjIwHJ:P9VbpUYxV2w0qEIaCAhlIC/7Nr

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks