General

  • Target

    99150fdcd3e88cf74df43f193c4d9d64_JaffaCakes118

  • Size

    215KB

  • Sample

    240605-ymrxvsgh55

  • MD5

    99150fdcd3e88cf74df43f193c4d9d64

  • SHA1

    524664c64403a0c83b52c8d49f1ea095796ad9a6

  • SHA256

    5fbce6f9317d220d8a0fed9441af4095e47af9aeb9a347a4b55ed7ee9fcb1cc8

  • SHA512

    1c52a74c11fb62e9e62daa9b7c56bb4489072f43536f9c04d8880ad8e997e3566bcbd74c0fe299c65eac3ef94640ebd195f6a8651b5f1691e9330f8263bb7621

  • SSDEEP

    1536:evQBeOGtrYSSsrc93UBIfdC67m6AJiqzgLrTKBk3IU39TeYmKJ:ehOm2sI93UufdC67ciRLPvx3teYmo

Malware Config

Targets

    • Target

      99150fdcd3e88cf74df43f193c4d9d64_JaffaCakes118

    • Size

      215KB

    • MD5

      99150fdcd3e88cf74df43f193c4d9d64

    • SHA1

      524664c64403a0c83b52c8d49f1ea095796ad9a6

    • SHA256

      5fbce6f9317d220d8a0fed9441af4095e47af9aeb9a347a4b55ed7ee9fcb1cc8

    • SHA512

      1c52a74c11fb62e9e62daa9b7c56bb4489072f43536f9c04d8880ad8e997e3566bcbd74c0fe299c65eac3ef94640ebd195f6a8651b5f1691e9330f8263bb7621

    • SSDEEP

      1536:evQBeOGtrYSSsrc93UBIfdC67m6AJiqzgLrTKBk3IU39TeYmKJ:ehOm2sI93UufdC67ciRLPvx3teYmo

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks