ramnit | 5bee641f70ab66eec53c1cc7f918f77e09246fa12cc0a1bb3047bbd362b12437 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...b1.exe

windows7-x64

JaffaCakes...b1.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_012a77ff018ce4b5034a3e095a4aa9b1
Size

183KB
Sample

241231-c1ec2azkdq
MD5

012a77ff018ce4b5034a3e095a4aa9b1
SHA1

01f6f2e4933e48c6fa11bcf396d7e3986fe25d66
SHA256

5bee641f70ab66eec53c1cc7f918f77e09246fa12cc0a1bb3047bbd362b12437
SHA512

8980f9b869f343d8c0e68dcfc947e577f04086b2ce7fae879808fb43e02874674e684e1632fe5963db7ea265e042fe29aa8e09029aa4a726b81bd8cc3e35119f
SSDEEP

3072:d+FDzK71QkbstyJjCKICpC72s/mlaXKhYZ4KnlQeZqUSwCIipwCReMon:d+I713bstyJj0sC7/HdZ4KnllJdFfCRU

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_012a77ff018ce4b5034a3e095a4aa9b1.exe

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_012a77ff018ce4b5034a3e095a4aa9b1.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_012a77ff018ce4b5034a3e095a4aa9b1
- Size
  
  183KB
- MD5
  
  012a77ff018ce4b5034a3e095a4aa9b1
- SHA1
  
  01f6f2e4933e48c6fa11bcf396d7e3986fe25d66
- SHA256
  
  5bee641f70ab66eec53c1cc7f918f77e09246fa12cc0a1bb3047bbd362b12437
- SHA512
  
  8980f9b869f343d8c0e68dcfc947e577f04086b2ce7fae879808fb43e02874674e684e1632fe5963db7ea265e042fe29aa8e09029aa4a726b81bd8cc3e35119f
- SSDEEP
  
  3072:d+FDzK71QkbstyJjCKICpC72s/mlaXKhYZ4KnlQeZqUSwCIipwCReMon:d+I713bstyJj0sC7/HdZ4KnllJdFfCRU
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy