Overview

overview

10

Static

static

3

JaffaCakes...40.exe

windows7-x64

10

JaffaCakes...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_66406c88d639d9b275b1e3ec167b5840

  • Size

    420KB

  • Sample

    250102-taa2csznbr

  • MD5

    66406c88d639d9b275b1e3ec167b5840

  • SHA1

    91ae765bf2906c4b63800a03dd3febbb0d8377be

  • SHA256

    d7b078c636d5c5a034f52e0027e57f61c4e30437705590faaddc5e73c7092359

  • SHA512

    bd742ddd27299e4080deae8719c11343ea06329960161085a997a73945be0b843f3df5e66b2fc6fa10671b756379677002b1a376a6bf59ef254cafae6faac65b

  • SSDEEP

    6144:PHHapkhlWo46Sc+lmG/STwCM0gOQ7IUS0/5oCTAlgHJBsGi8lsV:/I6SBgX3vQ8US0bTAkBsx

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_66406c88d639d9b275b1e3ec167b5840

    • Size

      420KB

    • MD5

      66406c88d639d9b275b1e3ec167b5840

    • SHA1

      91ae765bf2906c4b63800a03dd3febbb0d8377be

    • SHA256

      d7b078c636d5c5a034f52e0027e57f61c4e30437705590faaddc5e73c7092359

    • SHA512

      bd742ddd27299e4080deae8719c11343ea06329960161085a997a73945be0b843f3df5e66b2fc6fa10671b756379677002b1a376a6bf59ef254cafae6faac65b

    • SSDEEP

      6144:PHHapkhlWo46Sc+lmG/STwCM0gOQ7IUS0/5oCTAlgHJBsGi8lsV:/I6SBgX3vQ8US0bTAkBsx

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks