ramnit | a72f37adf782863df3e0da03d35f7b877aa0c6865d8c948d7949c33ac0e8f888 | Triage

Submit
Reports

Overview

overview

Static

static

1

e5a744756d...8.html

windows7-x64

e5a744756d...8.html

windows10-2004-x64

3

Sharing

General

Target

e5a744756d68a73c43dd1c01a070dc26_JaffaCakes118
Size

158KB
Sample

241212-kz6d5a1pbk
MD5

e5a744756d68a73c43dd1c01a070dc26
SHA1

c26d89dde13883aa5cd5082d23d2c8e54134ae2b
SHA256

a72f37adf782863df3e0da03d35f7b877aa0c6865d8c948d7949c33ac0e8f888
SHA512

e7a38d614ba84b1c58d52629ccab63aa001dbb27113f7bc432384cf04cf04de55e6da9c40d75188edb122f0e1dcf1920af50f595db5e6a5e54b2ce60ee7d8a52
SSDEEP

1536:iYRTz+om2kyq8CyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iSbq8CyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

e5a744756d68a73c43dd1c01a070dc26_JaffaCakes118.html

Resource

win7-20241010-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e5a744756d68a73c43dd1c01a070dc26_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  e5a744756d68a73c43dd1c01a070dc26_JaffaCakes118
- Size
  
  158KB
- MD5
  
  e5a744756d68a73c43dd1c01a070dc26
- SHA1
  
  c26d89dde13883aa5cd5082d23d2c8e54134ae2b
- SHA256
  
  a72f37adf782863df3e0da03d35f7b877aa0c6865d8c948d7949c33ac0e8f888
- SHA512
  
  e7a38d614ba84b1c58d52629ccab63aa001dbb27113f7bc432384cf04cf04de55e6da9c40d75188edb122f0e1dcf1920af50f595db5e6a5e54b2ce60ee7d8a52
- SSDEEP
  
  1536:iYRTz+om2kyq8CyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iSbq8CyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy