Overview

overview

10

Static

static

3

JaffaCakes...63.dll

windows7-x64

7

JaffaCakes...63.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_008855f610d146db886f43db80dddd63

  • Size

    269KB

  • Sample

    241231-cjp37s1pbw

  • MD5

    008855f610d146db886f43db80dddd63

  • SHA1

    bc729c995c23a1867b47a737298c530325521075

  • SHA256

    7aadcea4b8bf52b14a027ea1cb9149bd85afefff1ae8a3faba8ef891f11daa9f

  • SHA512

    f73f0a34610a1d73e11e88936302f672812c5e60183cbb84660e26942f87b9c30c6d684a8a9b4db909b9ccf8d360278716d524c7a910c61cc982deb0b9bcda89

  • SSDEEP

    3072:+CuuNCRs/Pj03pJEEC9ti9pocimFFVW6E1fZim4v5TRRJBYeBTg4vRPW9vc/Bm60:+CIGPj038tAgFMldWNX+PD3o/9aM

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_008855f610d146db886f43db80dddd63

    • Size

      269KB

    • MD5

      008855f610d146db886f43db80dddd63

    • SHA1

      bc729c995c23a1867b47a737298c530325521075

    • SHA256

      7aadcea4b8bf52b14a027ea1cb9149bd85afefff1ae8a3faba8ef891f11daa9f

    • SHA512

      f73f0a34610a1d73e11e88936302f672812c5e60183cbb84660e26942f87b9c30c6d684a8a9b4db909b9ccf8d360278716d524c7a910c61cc982deb0b9bcda89

    • SSDEEP

      3072:+CuuNCRs/Pj03pJEEC9ti9pocimFFVW6E1fZim4v5TRRJBYeBTg4vRPW9vc/Bm60:+CIGPj038tAgFMldWNX+PD3o/9aM

    Score
    10/10
    discoveryramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks