ramnit | 706c1dd67218d49a1eeec13fd34e92503a89652aadb0ee9df3866e109a6dd1ce | Triage

Sharing

General

Target

e9169a393e9b664c3eb4c7f9c1299304_JaffaCakes118
Size

193KB
Sample

241213-a8gr1stjgt
MD5

e9169a393e9b664c3eb4c7f9c1299304
SHA1

b3794bcb14ca2cb4a9f3bfb14894a2138f474eb8
SHA256

706c1dd67218d49a1eeec13fd34e92503a89652aadb0ee9df3866e109a6dd1ce
SHA512

e86259dcb33662a1b0964a2a088d9062b91f878f60fe5b87a8505650773c155c6abbd52ec0b2cbdf7921c72555ebc0b95a1dd4749e8267dd5bc21ba3454143f3
SSDEEP

3072:0OybDlzTiVT5kNDqa1lc/AN1KDXyr/zFaN9PatUUQ1Yt9s3vVg4M:abBnih5wq4mAN1KDuFaLytUB1Yt92M

Score

10^/10

ramnit banker discovery spyware stealer trojan worm

Malware Config

Targets

- Target
  
  e9169a393e9b664c3eb4c7f9c1299304_JaffaCakes118
- Size
  
  193KB
- MD5
  
  e9169a393e9b664c3eb4c7f9c1299304
- SHA1
  
  b3794bcb14ca2cb4a9f3bfb14894a2138f474eb8
- SHA256
  
  706c1dd67218d49a1eeec13fd34e92503a89652aadb0ee9df3866e109a6dd1ce
- SHA512
  
  e86259dcb33662a1b0964a2a088d9062b91f878f60fe5b87a8505650773c155c6abbd52ec0b2cbdf7921c72555ebc0b95a1dd4749e8267dd5bc21ba3454143f3
- SSDEEP
  
  3072:0OybDlzTiVT5kNDqa1lc/AN1KDXyr/zFaN9PatUUQ1Yt9s3vVg4M:abBnih5wq4mAN1KDuFaLytUB1Yt92M
Score

10^/10

ramnit banker discovery spyware stealer trojan worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanworm