ramnit | 85091bfad769f95f9048f3b81845fc470c37adcd667a18b6226c47e91de7604a | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...60.dll

windows7-x64

7

JaffaCakes...60.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_473d0eea52e4c9128926811065a55b60
Size

223KB
Sample

250101-e5alravlcw
MD5

473d0eea52e4c9128926811065a55b60
SHA1

06c1db283660dd057bf846aa6cb444b74c25eb0f
SHA256

85091bfad769f95f9048f3b81845fc470c37adcd667a18b6226c47e91de7604a
SHA512

52e7f78330d42c768304c86664fb9fa7029517f7025334ac345b9116ec572938eba1cd882ee3955c94afc297e5da748cd4cddf49851a1cfa8596480860c5c08f
SSDEEP

3072:qmY2UXXqE+A6/Q2BBzrwj9o+vNNbbVweMh5R0MgTBqCxjdaK+3xPWzgjLwwEJo+j:YKEaXwj7BMhv0JBhjgK+pWBui+8

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_473d0eea52e4c9128926811065a55b60.dll

Resource

win7-20240729-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_473d0eea52e4c9128926811065a55b60.dll

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_473d0eea52e4c9128926811065a55b60
- Size
  
  223KB
- MD5
  
  473d0eea52e4c9128926811065a55b60
- SHA1
  
  06c1db283660dd057bf846aa6cb444b74c25eb0f
- SHA256
  
  85091bfad769f95f9048f3b81845fc470c37adcd667a18b6226c47e91de7604a
- SHA512
  
  52e7f78330d42c768304c86664fb9fa7029517f7025334ac345b9116ec572938eba1cd882ee3955c94afc297e5da748cd4cddf49851a1cfa8596480860c5c08f
- SSDEEP
  
  3072:qmY2UXXqE+A6/Q2BBzrwj9o+vNNbbVweMh5R0MgTBqCxjdaK+3xPWzgjLwwEJo+j:YKEaXwj7BMhv0JBhjgK+pWBui+8
Score

10^/10

discovery ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy