Analysis
-
max time kernel
22s -
max time network
7s -
platform
windows10-2004_x64 -
resource
win10v2004-20240729-en -
resource tags
-
submitted
27-07-2024 21:46
Errors
General
-
Target
01235b8629a95ca2157834d6d6507676_JaffaCakes118.exe
-
Size
390KB
-
MD5
01235b8629a95ca2157834d6d6507676
-
SHA1
f665a09ddf5008eb3bb2033d0790c0e3e59c52d6
-
SHA256
908d9241f53b0d2b5916636a2860b345047d99228d87cb2183ecdeb4e61cd147
-
SHA512
83a918e6a9ebadaf1f43ee38810acf591e80592fe9bb71741b0530aa11475d8cc1d53159181b5c7749aadac7f46272dbbcdc452999c55d61d7937f3a8e7a63f8
-
SSDEEP
3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwD7arfwYB:8cm7ImGddXmNt251UriZFwfs/B
Malware Config
Signatures
-
Blackmoon, KrBanker
Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
-
Detect Blackmoon payload 22 IoCs
-
UPX packed file 38 IoCs
Detects executables packed with UPX/modified UPX open source packer.
Processes
-
C:\Users\Admin\AppData\Local\Temp\01235b8629a95ca2157834d6d6507676_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\01235b8629a95ca2157834d6d6507676_JaffaCakes118.exe"1⤵
-
\??\c:\djpvj.exec:\djpvj.exe1⤵
-
\??\c:\lfxrxrx.exec:\lfxrxrx.exe1⤵
-
\??\c:\htnbnh.exec:\htnbnh.exe1⤵
-
\??\c:\ddpvp.exec:\ddpvp.exe2⤵
-
-
\??\c:\tttbth.exec:\tttbth.exe1⤵
-
\??\c:\xlxlllr.exec:\xlxlllr.exe1⤵
-
\??\c:\jvdpj.exec:\jvdpj.exe2⤵
-
-
\??\c:\rflxrlr.exec:\rflxrlr.exe1⤵
-
\??\c:\thnhtb.exec:\thnhtb.exe2⤵
-
-
\??\c:\bbnbbt.exec:\bbnbbt.exe1⤵
-
\??\c:\ntnbth.exec:\ntnbth.exe1⤵
-
\??\c:\bhtbnb.exec:\bhtbnb.exe1⤵
-
\??\c:\vpdvd.exec:\vpdvd.exe1⤵
-
\??\c:\fffffll.exec:\fffffll.exe1⤵
-
\??\c:\lrxflrx.exec:\lrxflrx.exe1⤵
-
\??\c:\pjdjd.exec:\pjdjd.exe1⤵
-
\??\c:\jvvpp.exec:\jvvpp.exe1⤵
-
\??\c:\dpvdj.exec:\dpvdj.exe1⤵
-
\??\c:\bhhntt.exec:\bhhntt.exe1⤵
-
\??\c:\ddppp.exec:\ddppp.exe1⤵
-
\??\c:\rrfrrrf.exec:\rrfrrrf.exe1⤵
-
\??\c:\htbtbh.exec:\htbtbh.exe1⤵
-
\??\c:\hbthtn.exec:\hbthtn.exe1⤵
-
\??\c:\nhnnth.exec:\nhnnth.exe1⤵
-
\??\c:\tbtnnh.exec:\tbtnnh.exe1⤵
-
\??\c:\hbtnnn.exec:\hbtnnn.exe1⤵
-
\??\c:\thnhhn.exec:\thnhhn.exe1⤵
-
\??\c:\rxlrlxx.exec:\rxlrlxx.exe1⤵
-
\??\c:\rxlfllf.exec:\rxlfllf.exe1⤵
-
\??\c:\pdpvd.exec:\pdpvd.exe1⤵
-
\??\c:\nthnht.exec:\nthnht.exe1⤵
-
\??\c:\rxxxxxx.exec:\rxxxxxx.exe1⤵
-
\??\c:\ddppv.exec:\ddppv.exe1⤵
-
\??\c:\hnthht.exec:\hnthht.exe1⤵
-
\??\c:\pjjpv.exec:\pjjpv.exe1⤵
-
\??\c:\bnbhtt.exec:\bnbhtt.exe1⤵
-
\??\c:\ppjvj.exec:\ppjvj.exe1⤵
-
\??\c:\rlllxlx.exec:\rlllxlx.exe1⤵
-
\??\c:\nbtbnb.exec:\nbtbnb.exe1⤵
-
\??\c:\bbttth.exec:\bbttth.exe1⤵
-
\??\c:\lfrlfxx.exec:\lfrlfxx.exe1⤵
-
\??\c:\fffrxxf.exec:\fffrxxf.exe1⤵
-
\??\c:\nnbhhh.exec:\nnbhhh.exe1⤵
-
\??\c:\pvvvd.exec:\pvvvd.exe1⤵
-
\??\c:\xxfxrrr.exec:\xxfxrrr.exe1⤵
-
\??\c:\jjppp.exec:\jjppp.exe1⤵
-
\??\c:\thnhhn.exec:\thnhhn.exe1⤵
-
\??\c:\ffxrxfr.exec:\ffxrxfr.exe1⤵
-
\??\c:\hbttbb.exec:\hbttbb.exe1⤵
-
\??\c:\pvvjj.exec:\pvvjj.exe1⤵
-
\??\c:\lfxfrfx.exec:\lfxfrfx.exe2⤵
-
\??\c:\nhbttt.exec:\nhbttt.exe3⤵
-
\??\c:\thhnnt.exec:\thhnnt.exe4⤵
-
\??\c:\pdvvd.exec:\pdvvd.exe5⤵
-
\??\c:\hntnbt.exec:\hntnbt.exe6⤵
-
\??\c:\tttbbh.exec:\tttbbh.exe7⤵
-
\??\c:\jpppv.exec:\jpppv.exe8⤵
-
\??\c:\rfxrxll.exec:\rfxrxll.exe9⤵
-
\??\c:\nbnnnb.exec:\nbnnnb.exe10⤵
-
-
-
-
-
-
-
-
-
-
\??\c:\pjjvj.exec:\pjjvj.exe1⤵
-
\??\c:\nnttth.exec:\nnttth.exe1⤵
-
\??\c:\pvddd.exec:\pvddd.exe1⤵
-
\??\c:\rrrfrfr.exec:\rrrfrfr.exe2⤵
-
-
\??\c:\tttbnn.exec:\tttbnn.exe1⤵
-
\??\c:\vpddj.exec:\vpddj.exe1⤵
-
\??\c:\3pjdd.exec:\3pjdd.exe1⤵
-
\??\c:\thnbbn.exec:\thnbbn.exe1⤵
-
\??\c:\jjvpv.exec:\jjvpv.exe1⤵
-
\??\c:\flffflr.exec:\flffflr.exe2⤵
-
-
\??\c:\bhbbnn.exec:\bhbbnn.exe1⤵
-
\??\c:\pjddv.exec:\pjddv.exe1⤵
-
\??\c:\ttnnhb.exec:\ttnnhb.exe1⤵
-
\??\c:\dvppp.exec:\dvppp.exe1⤵
-
\??\c:\xxrrfxx.exec:\xxrrfxx.exe1⤵
-
\??\c:\fflrrfl.exec:\fflrrfl.exe1⤵
-
\??\c:\nnnnbt.exec:\nnnnbt.exe1⤵
-
\??\c:\xxrrrrf.exec:\xxrrrrf.exe1⤵
-
\??\c:\httthb.exec:\httthb.exe1⤵
-
\??\c:\dvpvp.exec:\dvpvp.exe2⤵
-
-
\??\c:\vddjd.exec:\vddjd.exe1⤵
-
\??\c:\bbhhhn.exec:\bbhhhn.exe1⤵
-
\??\c:\rlrlfrl.exec:\rlrlfrl.exe1⤵
-
\??\c:\xxxxrxx.exec:\xxxxrxx.exe1⤵
-
\??\c:\bnhnbb.exec:\bnhnbb.exe1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
390KB
MD50dd4b2dbdc3429c627b5fab0af573274
SHA140ff37b63c7ee60bdba554076ea66a9cabbd15bb
SHA256e9ea63f287093f0fabaffac8a3d12507fed774d93c9ee0baa7217555c962017d
SHA512d3d37b236b9a9a1cffecd834746d296341a72b53056f8e5a1e37df355ab8229e802b5cf6ffa6fa5ba634fadf24c921090280646656c9c4a9a9845d1ab617819d
-
Filesize
390KB
MD5c960c3cb9306b2f28bfaba0b3d6c200d
SHA1a7ac15b15ed24c396d7b509f1d0f4f3ce4126437
SHA2567cd4e524433ee6bb9670897df416f8cd41f521362e799286d8793e2b799c8e6e
SHA5123994a1ef6b2afe7912bdc202440a0a19630cdbf2e6ed63275b13304e8cb3cec163720baddfad4cba302b41df4eb731aefecf16862d5b4540f21ecc09ebd1df93
-
Filesize
391KB
MD5bd7c26c83f25981bc69d661786b81a22
SHA1dc436cc40107879613988dc84cc912f047a4cc8b
SHA25644f1093b15e2f6eec83d9e1726616dd7a83f1342e6f131b48b39ab0bd74f7934
SHA51249e042bdedbf1a2ca39c5af79d00609b926c1d2d73b45a5464e4845f9ebfa39145c6957bf8cbdafe6f9376305a7bf189be0b258186f0794655bce90ad51210ba
-
Filesize
391KB
MD5238e9225c1bef55597cfa8c3f88485dc
SHA17a6430058a2dde221b027caa44f1b2995967a005
SHA256277a4e1d27691d5d5270e1ed561ccad802c282940b0100792bdd8c6507c9e831
SHA51221e5713c1bb1d3f423d2ce2b0724a04b33d65d4a1c7585f5a7f0d2bd927037f48fac74ca674575e99c843b124af54e375b5f20e83ff7bb4728cd4f93f1f482c7
-
Filesize
390KB
MD541f6a9c5cc1cbdf10d45720e0492a60e
SHA11a17c58eb96ac6df26cf0335795601b2fb2d72a0
SHA25679bbc9feb5a5af139f53aa53aadbf8c7e809cc30c3252db7035b4eae413eebf6
SHA512b41c3b6e3436ad469f29dcbf55852b2f2a65c1b0a2591257513ea465134db80398207ce5559ebaf3a13e2a191cf43f55aa7b1b2ff7445a4bc071f1b738d52901
-
Filesize
391KB
MD5e2ee8e3b5df3e933e9111ad28f552158
SHA1fad69c2da76930538cc583b6db868cf8b74f5606
SHA25686281ad646ff76bd4d2811a90be1e59945b21d6a25cf66d858b3cfb1b4123803
SHA51292f330159f002702f850d716bd1bf98e54e53564000d86f7908d1b8325e0060281685338b39a337aaa75adcb3d005c3194f22d3f4ec630ae7e6fa707119ae4a5
-
Filesize
390KB
MD55e5f27e364df1b165d7906745e0052d7
SHA186d363aa4450fe53a9c4ee884604508310316858
SHA256e1d374d6590f484ca492d94ac28a918b47936b4cabff45787ff1550f1f679417
SHA51221d6279486381145ca03a0b2ae0f73ae443f8c91322e19ad1d71963060610e2934c21c54f6386715e8ef9513d44de18e9201c2b4de2d148f55d57fa70bae3314
-
Filesize
391KB
MD589028f62ed091841a13d143494223ffc
SHA181df5ab501048e1b76138c4647f37f6d1e191bd4
SHA2569b36e1e39a841549c7fb09841fcf5e563398ff22f8744a3fa54b3988738d429c
SHA512ea88a5ad435037ef683312daaac74207df1b92ab7416d2f8f24cc1d3d372fd853f4ee1aa120eccc4686a50276a1bcbf3dc64b534d20f42e9ece288698760ec6f
-
Filesize
391KB
MD5f4120ddfd08e203415af4890938e7d7f
SHA116c92af92cb40b07c300e8bc15f475c1b8b69a3f
SHA2562217a1e511d01032e5843eb9a62290b561ea319940258f7605d711b2d80e3e97
SHA5128d00723560ebe1ab0d7ebdc67774b02c4651de35d11fdc45fea81afd1b7069c29b0a1c4803a4b07bc3985eb1e0950d784f2c6d5ce93035e75d18157ab5e214e9
-
Filesize
391KB
MD592f1b3f8e0bd53d4c59cbdd5dae7a4d8
SHA111d7f5ce08f6bb9892704c9126da2b9a011a3c6a
SHA2565706affc036dafed8c3131e16eb8c8d6a4fabde315dd93bc6c5721427e87a393
SHA512c116bfa65ba221c3a65eeca18fdacf3ebc04e16abac08499a698241a33c854e184947669c23482d1b52f084d2a17c1e2d0fecf38a7d49098cc8533f6c0fe1e94
-
Filesize
391KB
MD552bb394da27eeb8e7730bb93f070bbc0
SHA12eb388a18cfa31fba37646d38eaa10309ac31d51
SHA2568e5a63688dddfda062d64a4a589f465ec5a599243bacf356a0a5b7e4c9169ad1
SHA5123976058ef37a71568f03523f0a4da109801ede9e7b891b41a7739ff7dbbd1469a60ffe836cb48573fb0f6d5667c9e7250ee5bfdac29aff6ec7e31520c5588bc3
-
Filesize
391KB
MD57404a0d46add3fbc151cd4ed4b397ea2
SHA142d41f5742a17b5c9bda0d28525ab5072a5dafdd
SHA2567efcf049ac86a8e3b6470fa0a2fda932374ad0a6dccb84904685483b17c59ee1
SHA51292bdde88e2595ef991ae17fcbc4a9007b07f1d74a807e0bd70f0e846a356748aa0c115902686546a5c4d2d955b3e0715c3332ef7c88fb77bc38bbd6f82cce0a9
-
Filesize
391KB
MD52b85d46323b1f705b1f7ca2e5dac7b09
SHA1861a31f63f433d0abaaacad8bb692f1522db092b
SHA25686170b926222073536dd6652a4538a3699f88288599c26fea3fce2436877a3f9
SHA512460ad8f4d1992a0ae541d5447832898f4f8ebef2af82cef947606120a03963f0a5d45c631b4d21723bf0598508c6a31ca44abf4d7e9576a9c739e38e5b9a8dea
-
Filesize
390KB
MD50ab7dfadf102ab34e8adaf007531ced7
SHA1c011a31e67f07f8eb52f671669d7e15c55bb5dfa
SHA256ba3fa2fb07d55b1469676182070729a5c91b39e2620fecfa57c93126d77cab28
SHA51266632624f007a37d5e00d938af97131251f7df1c37068e32fd25c0edd645a265e134ada7b38fce6943cc2479263ba8653bb75cf4776c9a7ecb725520dd0aa95b
-
Filesize
391KB
MD518737a3e787e940e7bd8bad0219c1f50
SHA154bcb1b8c7cf755dee36726cd41cc3c1e82d6e7e
SHA256bd48a5feceac68ad18ae183fe6cc46b73fd0bb7ab3c308267ee8153cf39df6c0
SHA512191ae4604a478b586ece4cd09c88603245423849c05a4b2f228f934743d2e0b338edf4311aad58885d0356e43f6d9577e2ca14c9bb09610b598e54af34767159
-
Filesize
390KB
MD56374885d83e87aa9a240a94e08d21a76
SHA1804bfd117b4b7294ca58f555a8a331cbaf100807
SHA256a0696af92947e2f40acce0a22641980ca40aedaf2390560589fb0e4ea3854eec
SHA512abd0a2a845a38cd55016ac30267d22dbd3878a57d9b5b1e00d4c420f362ed2de8a64beaa8a9ad5b0c4f3abc4bd140727ecab6e1ac9e148526d38355bc7ebab73
-
Filesize
390KB
MD52ffd9b819e69369755fb1291042df62e
SHA114a4b14ff84975f9698caf411879bed35fb6012a
SHA2565f8d97ef416e0515a2bed4bcc27899605f0900858945067706141340957e86d0
SHA51281f57aff4572af3e9096c166898ea0a1509320b3323f7bc01c97e552faece4a5a60d9abc5319ab6e6546cc9acbc1eb32ab8bba2c3662255fc1cdb7e83007305c
-
Filesize
391KB
MD55d17d87bf4a1effc71fc26930d376023
SHA1b957a8f9727d9904e31b027b9d4276b8d9104c25
SHA256ed84ae2eee3737097a3df8b4c57cd08d8442db9815c4e05015c02be81f3964a0
SHA5123b621a21f466a7c3b3fcb6663e06316536f8e895fdd16ea023ee57b992ca22d0812f6028d3aa2bba3507a90735d3aa00983dd2e621c6351e4f2883f4a9cb15ad
-
Filesize
391KB
MD5bf80665904f4eaffce536b7c0862a4df
SHA19048a6a42a685364ed9af9bbbb6e5fb2c72fcdc8
SHA2569eb43f35dbe0f66653fa4393fe383c276c4da597cd581c4c949279f1e841ebad
SHA5128f17fd8ad3cd324fea4d5e774244dc23db14a9e99d20b2603bc46fe32a76f5b851ed182dd81c23e569e137032ace9c3bf7db8e1aca072d1f8caf801e08491640
-
Filesize
391KB
MD5c5f9f5f6e2aba6a441aab7a2d38b619c
SHA1bdc485498ca5e24c5ffb64f4e9cc03a4a06a07fb
SHA2563e658bd13bb4ab93864ce0f8a19ea9946ed2b4e6e86109c3dfaadd62e0e8982d
SHA5124cac2b1448d86f6ad3eacfadc7c916c6db9d75cbdf180762ae7001ebe71038b55e675998ccec63dd345aa1fc3ad7ab8a5f9a01196e518e32f075210009afc87f
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB
-
Filesize
168KB