Overview

overview

10

Static

static

3

JaffaCakes...70.dll

windows7-x64

10

JaffaCakes...70.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_44cdc2098cd3a030e21ba60d1e108570

  • Size

    144KB

  • Sample

    250101-djkddsvlam

  • MD5

    44cdc2098cd3a030e21ba60d1e108570

  • SHA1

    6293acfb087cd57099b5bd1a415ebcc3dcacb298

  • SHA256

    fb1fb1e78b772433f8fa0345af6666d90598880797c5c57ca16d149eaad5e79a

  • SHA512

    76900801f4ed6a010f18fba6975b90af15f7bc60cb9119539113961a5c1332633fc2e1c8c1d13871ae4e3ef60cfe3cdf3a0d8208e5aeedd2526a4c54987f04b4

  • SSDEEP

    1536:Ys43KToJcVmBapBQ7op2u4PkUGelpLt5Pt36lR4PNgOW/33l6UuEncT/B:Jn4cV8gf2u41Z5tKlmPdm15y

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_44cdc2098cd3a030e21ba60d1e108570

    • Size

      144KB

    • MD5

      44cdc2098cd3a030e21ba60d1e108570

    • SHA1

      6293acfb087cd57099b5bd1a415ebcc3dcacb298

    • SHA256

      fb1fb1e78b772433f8fa0345af6666d90598880797c5c57ca16d149eaad5e79a

    • SHA512

      76900801f4ed6a010f18fba6975b90af15f7bc60cb9119539113961a5c1332633fc2e1c8c1d13871ae4e3ef60cfe3cdf3a0d8208e5aeedd2526a4c54987f04b4

    • SSDEEP

      1536:Ys43KToJcVmBapBQ7op2u4PkUGelpLt5Pt36lR4PNgOW/33l6UuEncT/B:Jn4cV8gf2u41Z5tKlmPdm15y

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks