ramnit | 5ec9b31b14d03a3997e1533ccaf5d0be69155d7fa7d3035ffe7aeae3553e93f0 | Triage

Submit
Reports

Overview

overview

Static

static

3

1e5cd86251...18.dll

windows7-x64

1e5cd86251...18.dll

windows10-2004-x64

Sharing

General

Target

1e5cd86251c2c61ee1cf479963b8acb8_JaffaCakes118
Size

247KB
Sample

240702-hk9rws1crb
MD5

1e5cd86251c2c61ee1cf479963b8acb8
SHA1

8962fa64240eaf4705766a55dd2a775993daf268
SHA256

5ec9b31b14d03a3997e1533ccaf5d0be69155d7fa7d3035ffe7aeae3553e93f0
SHA512

60e96b374238a81c9dac7c06850fb176faf58963825079b01a235880e7132a3b8499232cce77efe9ac2ff6208a05d63e449a0912c2f7a1bdbd11619020ca6953
SSDEEP

6144:CvCpkQAN1ZZd8SnRK5OK42YXBiiRX7MSkECHMjC3llvc:rpwNPZd8SnMwvJRrqECHt3c

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1e5cd86251c2c61ee1cf479963b8acb8_JaffaCakes118.dll

Resource

win7-20240611-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

1e5cd86251c2c61ee1cf479963b8acb8_JaffaCakes118.dll

Resource

win10v2004-20240508-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  1e5cd86251c2c61ee1cf479963b8acb8_JaffaCakes118
- Size
  
  247KB
- MD5
  
  1e5cd86251c2c61ee1cf479963b8acb8
- SHA1
  
  8962fa64240eaf4705766a55dd2a775993daf268
- SHA256
  
  5ec9b31b14d03a3997e1533ccaf5d0be69155d7fa7d3035ffe7aeae3553e93f0
- SHA512
  
  60e96b374238a81c9dac7c06850fb176faf58963825079b01a235880e7132a3b8499232cce77efe9ac2ff6208a05d63e449a0912c2f7a1bdbd11619020ca6953
- SSDEEP
  
  6144:CvCpkQAN1ZZd8SnRK5OK42YXBiiRX7MSkECHMjC3llvc:rpwNPZd8SnMwvJRrqECHt3c
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy