ramnit | 428a997315690a32b5d601cce32f6074464fdb4566426832c2055ef484de027f | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...8b.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_b3e25a8d0815d7d4bf31d6d28c6b9a8b
Size

2.4MB
Sample

250413-hm2t3a1jt9
MD5

b3e25a8d0815d7d4bf31d6d28c6b9a8b
SHA1

cfacd87ad17a33ef1890111b398c76387f003432
SHA256

428a997315690a32b5d601cce32f6074464fdb4566426832c2055ef484de027f
SHA512

124d229a2f22c4def3f8e5ff64d5cf0ad5804adab22ec60fc9c3c02a5e73aa304dc9a25de42eb50d1393d448ff226dbecd75c70b13769123c28f9df60d50679d
SSDEEP

49152:B3pp9ziy5bRCrEaoWzw7ai91wgvTBBsCkh9Sp3BVcmUG8lFN6ijGUKYsVMLz6onI:B3pv+y5dIVs7aWPvTBBKh9UBVc/ln16d

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_b3e25a8d0815d7d4bf31d6d28c6b9a8b.dll

Resource

win10v2004-20250314-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_b3e25a8d0815d7d4bf31d6d28c6b9a8b
- Size
  
  2.4MB
- MD5
  
  b3e25a8d0815d7d4bf31d6d28c6b9a8b
- SHA1
  
  cfacd87ad17a33ef1890111b398c76387f003432
- SHA256
  
  428a997315690a32b5d601cce32f6074464fdb4566426832c2055ef484de027f
- SHA512
  
  124d229a2f22c4def3f8e5ff64d5cf0ad5804adab22ec60fc9c3c02a5e73aa304dc9a25de42eb50d1393d448ff226dbecd75c70b13769123c28f9df60d50679d
- SSDEEP
  
  49152:B3pp9ziy5bRCrEaoWzw7ai91wgvTBBsCkh9Sp3BVcmUG8lFN6ijGUKYsVMLz6onI:B3pv+y5dIVs7aWPvTBBKh9UBVc/ln16d
Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- Executes dropped EXE
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy