Overview

overview

10

Static

static

3

JaffaCakes...40.exe

windows7-x64

10

JaffaCakes...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_423ad0cb669816bed6ea51e1d675fd40

  • Size

    100KB

  • Sample

    250101-bt7kka1rbq

  • MD5

    423ad0cb669816bed6ea51e1d675fd40

  • SHA1

    fe5556fbe1d7016fd687729e4070fe83d94a761f

  • SHA256

    d0e61135382303eca92d3e66cbd84621c2a9e92ec9d8f9fe3da0e7361f3ade9d

  • SHA512

    4005bbc07222f4868ccbf9a7cfadd11021baabcabccd6e203770df92b3e64cca7442d00a838dc9e5497aee5ef4b10996aab962cdec4da998a7173723defd478b

  • SSDEEP

    1536:cnEaoFtOl90eQj/WOLiTCu3y8dwjbBNv1CFvCNwiO2xBCiMladwvb:Q+FQl9Qj/D4K3/Bt1CpbiOSwvb

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_423ad0cb669816bed6ea51e1d675fd40

    • Size

      100KB

    • MD5

      423ad0cb669816bed6ea51e1d675fd40

    • SHA1

      fe5556fbe1d7016fd687729e4070fe83d94a761f

    • SHA256

      d0e61135382303eca92d3e66cbd84621c2a9e92ec9d8f9fe3da0e7361f3ade9d

    • SHA512

      4005bbc07222f4868ccbf9a7cfadd11021baabcabccd6e203770df92b3e64cca7442d00a838dc9e5497aee5ef4b10996aab962cdec4da998a7173723defd478b

    • SSDEEP

      1536:cnEaoFtOl90eQj/WOLiTCu3y8dwjbBNv1CFvCNwiO2xBCiMladwvb:Q+FQl9Qj/D4K3/Bt1CpbiOSwvb

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks