Overview

overview

10

Static

static

3

JaffaCakes...c7.dll

windows7-x64

7

JaffaCakes...c7.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_07ef3f60fd895473fc0ade1dcb56c9c7

  • Size

    227KB

  • Sample

    250121-18pezatnbw

  • MD5

    07ef3f60fd895473fc0ade1dcb56c9c7

  • SHA1

    aa2868b55b0c707832881d5506ed02633b9b61d1

  • SHA256

    2c7a3ac7722902e9e76ccb83ae42f83f932b49ce1fa2037a2dcb834e5864fa59

  • SHA512

    91c77bab0decc35368c731647aedbe133fba08feb7d1c7f234035f51a7c3148372e4867443e012f354943052ff78b43f2800fc41607f23c10510715fc0392e17

  • SSDEEP

    3072:2CuuNCRs/Pj03pJEEC9ti9pocimFFVW6E1fZim4v5TRRJBYeBTg4vRPW9vc/Bm6a:2CIGPj038tAgFMldWNX+fFfT7h0TD

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_07ef3f60fd895473fc0ade1dcb56c9c7

    • Size

      227KB

    • MD5

      07ef3f60fd895473fc0ade1dcb56c9c7

    • SHA1

      aa2868b55b0c707832881d5506ed02633b9b61d1

    • SHA256

      2c7a3ac7722902e9e76ccb83ae42f83f932b49ce1fa2037a2dcb834e5864fa59

    • SHA512

      91c77bab0decc35368c731647aedbe133fba08feb7d1c7f234035f51a7c3148372e4867443e012f354943052ff78b43f2800fc41607f23c10510715fc0392e17

    • SSDEEP

      3072:2CuuNCRs/Pj03pJEEC9ti9pocimFFVW6E1fZim4v5TRRJBYeBTg4vRPW9vc/Bm6a:2CIGPj038tAgFMldWNX+fFfT7h0TD

    Score
    10/10
    discoveryramnitbankerspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks