ramnit | 4fb45897148298d31b956f945d7f3a2babae533e1e8506c97cbd778eae6d87bc | Triage

Submit
Reports

Overview

overview

Static

static

1

f368b641cb...8.html

windows7-x64

f368b641cb...8.html

windows10-2004-x64

3

Sharing

General

Target

f368b641cbf793b6c4b011a93522adf7_JaffaCakes118
Size

156KB
Sample

241215-lpts1szqaz
MD5

f368b641cbf793b6c4b011a93522adf7
SHA1

259b6218415e7e13d7cc98be205d8866d18867fb
SHA256

4fb45897148298d31b956f945d7f3a2babae533e1e8506c97cbd778eae6d87bc
SHA512

e7c96d09ad9c31c4c25c332ac9e259e2d834dfe6a564f7cf7f539931dca85c79d28910054c4bcdc3d3ffa9f6762ccecc9e2e2cfadf770c11d28dd24bbe2ecf9f
SSDEEP

1536:ipRTe2eT84/B/6RPWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3p:iPwLByFWyfkMY+BES09JXAnyrZalI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

f368b641cbf793b6c4b011a93522adf7_JaffaCakes118.html

Resource

win7-20241023-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

f368b641cbf793b6c4b011a93522adf7_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  f368b641cbf793b6c4b011a93522adf7_JaffaCakes118
- Size
  
  156KB
- MD5
  
  f368b641cbf793b6c4b011a93522adf7
- SHA1
  
  259b6218415e7e13d7cc98be205d8866d18867fb
- SHA256
  
  4fb45897148298d31b956f945d7f3a2babae533e1e8506c97cbd778eae6d87bc
- SHA512
  
  e7c96d09ad9c31c4c25c332ac9e259e2d834dfe6a564f7cf7f539931dca85c79d28910054c4bcdc3d3ffa9f6762ccecc9e2e2cfadf770c11d28dd24bbe2ecf9f
- SSDEEP
  
  1536:ipRTe2eT84/B/6RPWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3p:iPwLByFWyfkMY+BES09JXAnyrZalI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2025

Terms | Privacy