ramnit | d56af1cd49e63a4e105b19f6aa02d87d444cb28ed069b6977d1a8f40855d059c | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...d9.exe

windows7-x64

JaffaCakes...d9.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_7b825962178ec6ce3e9298f274c131d9
Size

107KB
Sample

250104-yrywzavlhx
MD5

7b825962178ec6ce3e9298f274c131d9
SHA1

bb61c8d906ef34aa4f0d0182a4c50883037f58fb
SHA256

d56af1cd49e63a4e105b19f6aa02d87d444cb28ed069b6977d1a8f40855d059c
SHA512

d9700d3f055d5f26fc768060bcaef752fa43ad726f5c8e9f1e54042d371e7c76b03c216606baf4316f326464fb15d1ecada4b0475a5e84a47a6ada8324096b3a
SSDEEP

1536:4+FDoKiniY1u7Nn2JFkC2styJjCKICFjC7EWisS+5mlatSfkZD:4+FDMK71QkbstyJjCKICpC72s/mlaXD

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_7b825962178ec6ce3e9298f274c131d9.exe

Resource

win7-20240903-en

ramnit banker discovery spyware stealer trojan upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_7b825962178ec6ce3e9298f274c131d9.exe

Resource

win10v2004-20241007-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_7b825962178ec6ce3e9298f274c131d9
- Size
  
  107KB
- MD5
  
  7b825962178ec6ce3e9298f274c131d9
- SHA1
  
  bb61c8d906ef34aa4f0d0182a4c50883037f58fb
- SHA256
  
  d56af1cd49e63a4e105b19f6aa02d87d444cb28ed069b6977d1a8f40855d059c
- SHA512
  
  d9700d3f055d5f26fc768060bcaef752fa43ad726f5c8e9f1e54042d371e7c76b03c216606baf4316f326464fb15d1ecada4b0475a5e84a47a6ada8324096b3a
- SSDEEP
  
  1536:4+FDoKiniY1u7Nn2JFkC2styJjCKICFjC7EWisS+5mlatSfkZD:4+FDMK71QkbstyJjCKICpC72s/mlaXD
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy