ramnit | 48750ab89a8e4f947b560940d555186a1827983d1eefaadb1c9279baf691c21f | Triage

Submit
Reports

Overview

overview

Static

static

1

f453e6b746...8.html

windows7-x64

f453e6b746...8.html

windows10-2004-x64

3

Sharing

General

Target

f453e6b7464a81480dd4fd47ffe6b661_JaffaCakes118
Size

158KB
Sample

241215-rb8b5swnes
MD5

f453e6b7464a81480dd4fd47ffe6b661
SHA1

8d7a708ffd7c4aae5051fe084bed645c2dec9446
SHA256

48750ab89a8e4f947b560940d555186a1827983d1eefaadb1c9279baf691c21f
SHA512

f264be5b803e08f64b1b278bc3b2cb83545e321f1c7950c92d7c6fa605f212b05c881afd2686ffa203931b8c47015a3aa691124686569441f828893fe281bdde
SSDEEP

3072:i9pd1sUEcMyfkMY+BES09JXAnyrZalI+YQ:iR1szcxsMYod+X3oI+YQ

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

f453e6b7464a81480dd4fd47ffe6b661_JaffaCakes118.html

Resource

win7-20241023-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

f453e6b7464a81480dd4fd47ffe6b661_JaffaCakes118.html

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  f453e6b7464a81480dd4fd47ffe6b661_JaffaCakes118
- Size
  
  158KB
- MD5
  
  f453e6b7464a81480dd4fd47ffe6b661
- SHA1
  
  8d7a708ffd7c4aae5051fe084bed645c2dec9446
- SHA256
  
  48750ab89a8e4f947b560940d555186a1827983d1eefaadb1c9279baf691c21f
- SHA512
  
  f264be5b803e08f64b1b278bc3b2cb83545e321f1c7950c92d7c6fa605f212b05c881afd2686ffa203931b8c47015a3aa691124686569441f828893fe281bdde
- SSDEEP
  
  3072:i9pd1sUEcMyfkMY+BES09JXAnyrZalI+YQ:iR1szcxsMYod+X3oI+YQ
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy