ramnit | b205fa9c41ad215be4f6340ae9765dafea2eb6511eda1a97f8b55611bd0bc51d | Triage

Submit
Reports

Overview

overview

Static

static

3

1b3bdebdf3...18.exe

windows7-x64

1b3bdebdf3...18.exe

windows10-2004-x64

Sharing

General

Target

1b3bdebdf3a303e095757a0b3f31d3ad_JaffaCakes118
Size

584KB
Sample

240701-n87v4a1ajh
MD5

1b3bdebdf3a303e095757a0b3f31d3ad
SHA1

f4dfceb18ea51b9bdb7cadf647094e22d9c5780d
SHA256

b205fa9c41ad215be4f6340ae9765dafea2eb6511eda1a97f8b55611bd0bc51d
SHA512

3871601b4d476b725f50a52f9697ccf3bd1719395be80b9528d2d6befdc1bb5990647fdc3ff266b9993dbda69c25292c12622915da345d06c687c767a71f137f
SSDEEP

12288:kCi0TKv5p3TtQm0x7llzTwsvjXhVsf14c8XfO921RWX:/iDvTq5xrTwsvjEf14c8vx16

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1b3bdebdf3a303e095757a0b3f31d3ad_JaffaCakes118.exe

Resource

win7-20240611-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

1b3bdebdf3a303e095757a0b3f31d3ad_JaffaCakes118.exe

Resource

win10v2004-20240611-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  1b3bdebdf3a303e095757a0b3f31d3ad_JaffaCakes118
- Size
  
  584KB
- MD5
  
  1b3bdebdf3a303e095757a0b3f31d3ad
- SHA1
  
  f4dfceb18ea51b9bdb7cadf647094e22d9c5780d
- SHA256
  
  b205fa9c41ad215be4f6340ae9765dafea2eb6511eda1a97f8b55611bd0bc51d
- SHA512
  
  3871601b4d476b725f50a52f9697ccf3bd1719395be80b9528d2d6befdc1bb5990647fdc3ff266b9993dbda69c25292c12622915da345d06c687c767a71f137f
- SSDEEP
  
  12288:kCi0TKv5p3TtQm0x7llzTwsvjXhVsf14c8XfO921RWX:/iDvTq5xrTwsvjEf14c8vx16
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy