ramnit | 0625488a1543df5033ec9bc0f99a08ff9bbde21e45f7e88797562f9b12a5e8cf | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...46.dll

windows7-x64

7

JaffaCakes...46.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_64dcf747b8246f128a9c7bc611e8f646
Size

456KB
Sample

250102-nye3bstkgn
MD5

64dcf747b8246f128a9c7bc611e8f646
SHA1

d6f4a6877109f8b75e86c7dd25825035c69b5c54
SHA256

0625488a1543df5033ec9bc0f99a08ff9bbde21e45f7e88797562f9b12a5e8cf
SHA512

36eda085e419ad8d41bdc5a790af717bc13835077fd2fcf2a50ae31fb0ca671f74d735d414298ad99b7d85dbc46d2688beb906fa9184c631007834d1bf7191b4
SSDEEP

12288:+V7LMzw56Wx1Dk/qon6xyYhgPFaUVltz7w1c:Y1oC3yWgPFl

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_64dcf747b8246f128a9c7bc611e8f646.dll

Resource

win7-20240729-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_64dcf747b8246f128a9c7bc611e8f646.dll

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_64dcf747b8246f128a9c7bc611e8f646
- Size
  
  456KB
- MD5
  
  64dcf747b8246f128a9c7bc611e8f646
- SHA1
  
  d6f4a6877109f8b75e86c7dd25825035c69b5c54
- SHA256
  
  0625488a1543df5033ec9bc0f99a08ff9bbde21e45f7e88797562f9b12a5e8cf
- SHA512
  
  36eda085e419ad8d41bdc5a790af717bc13835077fd2fcf2a50ae31fb0ca671f74d735d414298ad99b7d85dbc46d2688beb906fa9184c631007834d1bf7191b4
- SSDEEP
  
  12288:+V7LMzw56Wx1Dk/qon6xyYhgPFaUVltz7w1c:Y1oC3yWgPFl
Score

10^/10

discovery ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy