ramnit | 0ace9846c473b05055177a16b8f02bbab2f98fce15317dd2db4af0541897c5ad | Triage

Submit
Reports

Overview

overview

Static

static

1

e1cedf3390...8.html

windows7-x64

e1cedf3390...8.html

windows10-2004-x64

3

Sharing

General

Target

e1cedf339020a61aa73073adb22069cd_JaffaCakes118
Size

156KB
Sample

241211-rfbhzazncp
MD5

e1cedf339020a61aa73073adb22069cd
SHA1

447a8eabfad09af27a26339fda8b68ebf531c1a8
SHA256

0ace9846c473b05055177a16b8f02bbab2f98fce15317dd2db4af0541897c5ad
SHA512

b1d68b92db6ce8fcc1b84a9c6ab231ff578f30b25499da5b1dd16183c7a2bd3df9a3f1213378956fec0ba251398e120b59412fe5c2776913b67ddad18b46372b
SSDEEP

1536:itRTS/DhO1iNgyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:iLCEiNgyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

e1cedf339020a61aa73073adb22069cd_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e1cedf339020a61aa73073adb22069cd_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  e1cedf339020a61aa73073adb22069cd_JaffaCakes118
- Size
  
  156KB
- MD5
  
  e1cedf339020a61aa73073adb22069cd
- SHA1
  
  447a8eabfad09af27a26339fda8b68ebf531c1a8
- SHA256
  
  0ace9846c473b05055177a16b8f02bbab2f98fce15317dd2db4af0541897c5ad
- SHA512
  
  b1d68b92db6ce8fcc1b84a9c6ab231ff578f30b25499da5b1dd16183c7a2bd3df9a3f1213378956fec0ba251398e120b59412fe5c2776913b67ddad18b46372b
- SSDEEP
  
  1536:itRTS/DhO1iNgyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:iLCEiNgyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy