ramnit | 734dd74b93c4737ad5522794e10ed111d08c6ec10b5aae288189cb65f9519065 | Triage

Submit
Reports

Overview

overview

Static

static

1

eb78bafbff...8.html

windows7-x64

eb78bafbff...8.html

windows10-2004-x64

3

Sharing

General

Target

eb78bafbff5abbfcee788febbd6ff239_JaffaCakes118
Size

155KB
Sample

241213-phjw1syjav
MD5

eb78bafbff5abbfcee788febbd6ff239
SHA1

0c3ea09406d3ea2c9c55387b6ca464d714a220c4
SHA256

734dd74b93c4737ad5522794e10ed111d08c6ec10b5aae288189cb65f9519065
SHA512

8c5b034e5aa0397fff7f6dba4626b067af29dae80c35034efa60c83c098f1d7dc1e582870f6ea8d155817d5f4a001b978e69deb76d2034fa755405649de0af94
SSDEEP

1536:ipRTxzJEgRrPRcyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iPjbcyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

eb78bafbff5abbfcee788febbd6ff239_JaffaCakes118.html

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb78bafbff5abbfcee788febbd6ff239_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  eb78bafbff5abbfcee788febbd6ff239_JaffaCakes118
- Size
  
  155KB
- MD5
  
  eb78bafbff5abbfcee788febbd6ff239
- SHA1
  
  0c3ea09406d3ea2c9c55387b6ca464d714a220c4
- SHA256
  
  734dd74b93c4737ad5522794e10ed111d08c6ec10b5aae288189cb65f9519065
- SHA512
  
  8c5b034e5aa0397fff7f6dba4626b067af29dae80c35034efa60c83c098f1d7dc1e582870f6ea8d155817d5f4a001b978e69deb76d2034fa755405649de0af94
- SSDEEP
  
  1536:ipRTxzJEgRrPRcyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iPjbcyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy