Overview

overview

10

Static

static

3

JaffaCakes...b0.exe

windows7-x64

10

JaffaCakes...b0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6b66019e53b2bc643abba8a12cd63bb0

  • Size

    440KB

  • Sample

    250103-kfzggawkds

  • MD5

    6b66019e53b2bc643abba8a12cd63bb0

  • SHA1

    deb50e112ec55f3ec3aef238c05bca7693c7c90d

  • SHA256

    272bfd708709a6dc01466214915752964109a71fd8018cee13f61c4f7bc33432

  • SHA512

    b18742dbb41b4feba06a8d9ef39e642927578ddb686a7c5b3809ed6e44bc927dcbda9b9be3025911de05b256a709bddfd67570a7d448089d4d52b6229e45353c

  • SSDEEP

    6144:WAv3ue+w+UqN0eqEWs0WgCjGWGI2xoJb0BL3n5+YWLC70np9Ai6vuexGH:TvJ+1meqfsxJjGWNJgBL3nRupepRG

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_6b66019e53b2bc643abba8a12cd63bb0

    • Size

      440KB

    • MD5

      6b66019e53b2bc643abba8a12cd63bb0

    • SHA1

      deb50e112ec55f3ec3aef238c05bca7693c7c90d

    • SHA256

      272bfd708709a6dc01466214915752964109a71fd8018cee13f61c4f7bc33432

    • SHA512

      b18742dbb41b4feba06a8d9ef39e642927578ddb686a7c5b3809ed6e44bc927dcbda9b9be3025911de05b256a709bddfd67570a7d448089d4d52b6229e45353c

    • SSDEEP

      6144:WAv3ue+w+UqN0eqEWs0WgCjGWGI2xoJb0BL3n5+YWLC70np9Ai6vuexGH:TvJ+1meqfsxJjGWNJgBL3nRupepRG

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks