Overview

overview

10

Static

static

3

JaffaCakes...ae.dll

windows7-x64

10

JaffaCakes...ae.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_5c845862fdc6e6da1ff0d3571f6fb3ae

  • Size

    220KB

  • Sample

    250129-3rv8assqex

  • MD5

    5c845862fdc6e6da1ff0d3571f6fb3ae

  • SHA1

    137f9194056d3813e31534a8bce0dc1080b91920

  • SHA256

    58f8914f4cf307ff94f43f99cc1cd760d72a441067e501570de4a2bb45dfa016

  • SHA512

    a55ccdd317c2528d836a3c42f66c16fdb7922027e441775e019f2d3d7a2962492173d108d87b973cc39c5531af144c62bebfdfffb6d5ceb3b64c53b9a3c95336

  • SSDEEP

    6144:NP7JUPmmV/bWEmR6O1rcBiiRX7MSkECHMjC3llv6:JJkmmV/b8KRrqECHt36

Score
10/10
ramnitbankerdiscoveryspywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_5c845862fdc6e6da1ff0d3571f6fb3ae

    • Size

      220KB

    • MD5

      5c845862fdc6e6da1ff0d3571f6fb3ae

    • SHA1

      137f9194056d3813e31534a8bce0dc1080b91920

    • SHA256

      58f8914f4cf307ff94f43f99cc1cd760d72a441067e501570de4a2bb45dfa016

    • SHA512

      a55ccdd317c2528d836a3c42f66c16fdb7922027e441775e019f2d3d7a2962492173d108d87b973cc39c5531af144c62bebfdfffb6d5ceb3b64c53b9a3c95336

    • SSDEEP

      6144:NP7JUPmmV/bWEmR6O1rcBiiRX7MSkECHMjC3llv6:JJkmmV/b8KRrqECHt36

    Score
    10/10
    ramnitbankerdiscoveryspywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks