ramnit | dbdfd7ee653ace0595e32e36b0e075744ed17d5f320c88580e1f345ee6e3d4c2 | Triage

Submit
Reports

Overview

overview

Static

static

3

173c08bbe0...18.exe

windows7-x64

173c08bbe0...18.exe

windows10-2004-x64

Sharing

General

Target

173c08bbe0a296def019aabdc13b994e_JaffaCakes118
Size

106KB
Sample

240627-x4nfbswflh
MD5

173c08bbe0a296def019aabdc13b994e
SHA1

4096bb00a0edbaf20833d1805b47fa8266875682
SHA256

dbdfd7ee653ace0595e32e36b0e075744ed17d5f320c88580e1f345ee6e3d4c2
SHA512

35089c182fac2aea054c2d9a7dfcec4102cae2fef072e6d780583dd2170dfae006489913eff7508f8c50789229399b318ec80c8b99ce7aa2bdd19bc8cd9b9a8d
SSDEEP

1536:f3j72srzVRv7Kf4AH+pdcDJVoYMeKTn1xWOsc58KSC57DsP6JpWKVaN9z:fusXjTuoaD6eK718zm8KSC5cyPV25

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

173c08bbe0a296def019aabdc13b994e_JaffaCakes118.exe

Resource

win7-20240508-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

173c08bbe0a296def019aabdc13b994e_JaffaCakes118.exe

Resource

win10v2004-20240611-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  173c08bbe0a296def019aabdc13b994e_JaffaCakes118
- Size
  
  106KB
- MD5
  
  173c08bbe0a296def019aabdc13b994e
- SHA1
  
  4096bb00a0edbaf20833d1805b47fa8266875682
- SHA256
  
  dbdfd7ee653ace0595e32e36b0e075744ed17d5f320c88580e1f345ee6e3d4c2
- SHA512
  
  35089c182fac2aea054c2d9a7dfcec4102cae2fef072e6d780583dd2170dfae006489913eff7508f8c50789229399b318ec80c8b99ce7aa2bdd19bc8cd9b9a8d
- SSDEEP
  
  1536:f3j72srzVRv7Kf4AH+pdcDJVoYMeKTn1xWOsc58KSC57DsP6JpWKVaN9z:fusXjTuoaD6eK718zm8KSC5cyPV25
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy