Overview

overview

10

Static

static

10

2dc8543def...kes118

ubuntu-20.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2dc8543defea5d1359d67d774619e7f6_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240729-arcfzaxfrd

  • MD5

    2dc8543defea5d1359d67d774619e7f6

  • SHA1

    b60807977d97959c4343d065445d84101b327b45

  • SHA256

    1bedd24a402d0d0fe014463536b2fbe2e8e6321678e98f1e8336e22852ec7df8

  • SHA512

    6b8339e25fec338664ffd320af365e8b177cd32844844b95c99d4d9d2293557bf0e4a673533ac9f7af3c52d90b596f0852d02997be7226f0c6aa00b5ba9e59dd

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX482y1q2rJp0:745vRVJKGtSA0VWeozu9p0

Score
10/10
mrblackantivmbotnetlinuxpersistencetrojan

Malware Config

Targets

    • Target

      2dc8543defea5d1359d67d774619e7f6_JaffaCakes118

    • Size

      1.2MB

    • MD5

      2dc8543defea5d1359d67d774619e7f6

    • SHA1

      b60807977d97959c4343d065445d84101b327b45

    • SHA256

      1bedd24a402d0d0fe014463536b2fbe2e8e6321678e98f1e8336e22852ec7df8

    • SHA512

      6b8339e25fec338664ffd320af365e8b177cd32844844b95c99d4d9d2293557bf0e4a673533ac9f7af3c52d90b596f0852d02997be7226f0c6aa00b5ba9e59dd

    • SSDEEP

      24576:e845rGHu6gVJKG75oFpA0VWeX482y1q2rJp0:745vRVJKGtSA0VWeozu9p0

    Score
    10/10
    mrblackantivmbotnetpersistencetrojan

    • MrBlack Trojan

      IoT botnet which infects routers to be used for DDoS attacks.

      trojanbotnetmrblack

    • MrBlack trojan

    • Executes dropped EXE

    • Modifies init.d

      Adds/modifies system service, likely for persistence.

      persistence

    • Write file to user bin folder

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks