ramnit | 4ce3164766f1c2ea1d1da4a592bffda96d97b5f86cfbd8449d4cd7599b019f88 | Triage

Submit
Reports

Overview

overview

Static

static

1

db819a2a7d...8.html

windows7-x64

db819a2a7d...8.html

windows10-2004-x64

3

Sharing

General

Target

db819a2a7d58701abb9cc88cc5de0bcd_JaffaCakes118
Size

157KB
Sample

241209-zrx54swlhm
MD5

db819a2a7d58701abb9cc88cc5de0bcd
SHA1

2545e020a4edce1c40a04e5847515d705f0fe8f6
SHA256

4ce3164766f1c2ea1d1da4a592bffda96d97b5f86cfbd8449d4cd7599b019f88
SHA512

8ada1f5874ea354287b9550dc863f8170e26b129d2c075471e9a15467864f4e09baec3d5a6c312ee8223e34e1c542c6fbcd927a500ad855733616f1e8b2e968e
SSDEEP

1536:igRT05wAvV9yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:iKO9yfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

db819a2a7d58701abb9cc88cc5de0bcd_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

db819a2a7d58701abb9cc88cc5de0bcd_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  db819a2a7d58701abb9cc88cc5de0bcd_JaffaCakes118
- Size
  
  157KB
- MD5
  
  db819a2a7d58701abb9cc88cc5de0bcd
- SHA1
  
  2545e020a4edce1c40a04e5847515d705f0fe8f6
- SHA256
  
  4ce3164766f1c2ea1d1da4a592bffda96d97b5f86cfbd8449d4cd7599b019f88
- SHA512
  
  8ada1f5874ea354287b9550dc863f8170e26b129d2c075471e9a15467864f4e09baec3d5a6c312ee8223e34e1c542c6fbcd927a500ad855733616f1e8b2e968e
- SSDEEP
  
  1536:igRT05wAvV9yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:iKO9yfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy