Overview

overview

10

Static

static

3

JaffaCakes...74.dll

windows7-x64

7

JaffaCakes...74.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7a809678cdc4654d2a0a6282fd360b74

  • Size

    456KB

  • Sample

    250104-s6tynsxrep

  • MD5

    7a809678cdc4654d2a0a6282fd360b74

  • SHA1

    af78c723d16d2ba9704001ebeda69c8fcc5adc16

  • SHA256

    423742fe0d3213ccf26fab9ab45d81813ead35d052604dff168243f75a05a895

  • SHA512

    842613ad5b1352444caec28c277b8ef5e551e70a1df0a06f4db36f962fde8832046bff7c6d4663fce842995ba6866b4e7794f7937c8007cc7e5c49d363f9e9a8

  • SSDEEP

    12288:eV7LMzw56Wx1Dk/qon6xyYhgPFaUVltyNVb0L:41oC3yWgPFIbo

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_7a809678cdc4654d2a0a6282fd360b74

    • Size

      456KB

    • MD5

      7a809678cdc4654d2a0a6282fd360b74

    • SHA1

      af78c723d16d2ba9704001ebeda69c8fcc5adc16

    • SHA256

      423742fe0d3213ccf26fab9ab45d81813ead35d052604dff168243f75a05a895

    • SHA512

      842613ad5b1352444caec28c277b8ef5e551e70a1df0a06f4db36f962fde8832046bff7c6d4663fce842995ba6866b4e7794f7937c8007cc7e5c49d363f9e9a8

    • SSDEEP

      12288:eV7LMzw56Wx1Dk/qon6xyYhgPFaUVltyNVb0L:41oC3yWgPFIbo

    Score
    10/10
    discoveryramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks