General
-
Target
67b9b790ef50c08300943c2e50638581_JaffaCakes118
-
Size
1.2MB
-
Sample
240729-3ltsaa1brd
-
MD5
67b9b790ef50c08300943c2e50638581
-
SHA1
5d39ba3319eaabbd828fef1f91ecba73dde15117
-
SHA256
6c52534fb52fad44b42c7b158a7a79c8294ebf7f20a06df1dc4d8b1e5133d602
-
SHA512
a8667cfeb3ee7a68a3084bdd18b4f708ac6cceefb68e025eebd753b73ddd40c8570aa08f4e5facde282ddea13db5a4e6c3d6ae936cf2cb3ab999851672893c69
-
SSDEEP
24576:e845rGHu6gVJKG75oFpA0VWeX4f2y1q2rJp0:745vRVJKGtSA0VWeoeu9p0
Malware Config
Targets
-
-
Target
67b9b790ef50c08300943c2e50638581_JaffaCakes118
-
Size
1.2MB
-
MD5
67b9b790ef50c08300943c2e50638581
-
SHA1
5d39ba3319eaabbd828fef1f91ecba73dde15117
-
SHA256
6c52534fb52fad44b42c7b158a7a79c8294ebf7f20a06df1dc4d8b1e5133d602
-
SHA512
a8667cfeb3ee7a68a3084bdd18b4f708ac6cceefb68e025eebd753b73ddd40c8570aa08f4e5facde282ddea13db5a4e6c3d6ae936cf2cb3ab999851672893c69
-
SSDEEP
24576:e845rGHu6gVJKG75oFpA0VWeX4f2y1q2rJp0:745vRVJKGtSA0VWeoeu9p0
Score10/10-
MrBlack Trojan
IoT botnet which infects routers to be used for DDoS attacks.
-
MrBlack trojan
-
Executes dropped EXE
-
Modifies init.d
Adds/modifies system service, likely for persistence.
-
Write file to user bin folder
-
Writes file to system bin folder
-