ramnit | 055bf3d07e3bf82cb5a60e1d29835cd25f5c12166af2b97b6696e67909c1bd32 | Triage

Submit
Reports

Overview

overview

Static

static

1

e8bea7e5ec...8.html

windows7-x64

e8bea7e5ec...8.html

windows10-2004-x64

3

Sharing

General

Target

e8bea7e5ecc95c4ba0652ce4bf0beb87_JaffaCakes118
Size

158KB
Sample

241212-292blasmeq
MD5

e8bea7e5ecc95c4ba0652ce4bf0beb87
SHA1

3d8541b557a4c8fa3b98d4718d99734da352150b
SHA256

055bf3d07e3bf82cb5a60e1d29835cd25f5c12166af2b97b6696e67909c1bd32
SHA512

6b5356cb3421cb3e8b09983029cc1f14523f3a20895419d97d6634f1a1d52555d3c192e573d73e11a79a5bb3edef227fb5c1c63978b63e4b6674546b5e35d217
SSDEEP

1536:ijRT2dtSc5GRvvBPzDy8MtyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09M:iN9HxDytyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

e8bea7e5ecc95c4ba0652ce4bf0beb87_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e8bea7e5ecc95c4ba0652ce4bf0beb87_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  e8bea7e5ecc95c4ba0652ce4bf0beb87_JaffaCakes118
- Size
  
  158KB
- MD5
  
  e8bea7e5ecc95c4ba0652ce4bf0beb87
- SHA1
  
  3d8541b557a4c8fa3b98d4718d99734da352150b
- SHA256
  
  055bf3d07e3bf82cb5a60e1d29835cd25f5c12166af2b97b6696e67909c1bd32
- SHA512
  
  6b5356cb3421cb3e8b09983029cc1f14523f3a20895419d97d6634f1a1d52555d3c192e573d73e11a79a5bb3edef227fb5c1c63978b63e4b6674546b5e35d217
- SSDEEP
  
  1536:ijRT2dtSc5GRvvBPzDy8MtyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09M:iN9HxDytyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy