General

  • Target

    9912025d0a391c5ad9e9981aa44c5f15_JaffaCakes118

  • Size

    101KB

  • Sample

    240605-yj6xlsfh2t

  • MD5

    9912025d0a391c5ad9e9981aa44c5f15

  • SHA1

    cd7b3af56a20a35b5196f055520bd095ad6b036b

  • SHA256

    3e24f48ba9c622464f7c38a019467b68865ab29d301f8e36e523a0f50a72fade

  • SHA512

    ace8ac5651b37f589baa1b0920292e4e367e2ef2009acf29cc05747c488ef2525397371719efd21b19d2e85f20fd689b20a7a13fe3f54dc67127b97f8eba9e87

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2lmf6g7xmIi6h7zj:ymb3NkkiQ3mdBjF+3TU20L46Fn

Malware Config

Targets

    • Target

      9912025d0a391c5ad9e9981aa44c5f15_JaffaCakes118

    • Size

      101KB

    • MD5

      9912025d0a391c5ad9e9981aa44c5f15

    • SHA1

      cd7b3af56a20a35b5196f055520bd095ad6b036b

    • SHA256

      3e24f48ba9c622464f7c38a019467b68865ab29d301f8e36e523a0f50a72fade

    • SHA512

      ace8ac5651b37f589baa1b0920292e4e367e2ef2009acf29cc05747c488ef2525397371719efd21b19d2e85f20fd689b20a7a13fe3f54dc67127b97f8eba9e87

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2lmf6g7xmIi6h7zj:ymb3NkkiQ3mdBjF+3TU20L46Fn

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks