General
-
Target
4c9c34bae83f227f2f3ea91b530aca5a_JaffaCakes118
-
Size
1.2MB
-
Sample
240729-rzwy1sxcka
-
MD5
4c9c34bae83f227f2f3ea91b530aca5a
-
SHA1
11a2d936a520ec451ae2a63171cc8a8057a4d11f
-
SHA256
5eb06ef399084ebe01581ee51a2406a6352f410f9e345b37a784752733ce9067
-
SHA512
635f00de4c0a0579c48f12720e7cebf1169a918cd4f5a6590bed03cfa7b4bb0d8be5f802298c775ac753f507fbc014817d025aa249b75d184085df73a58d49d3
-
SSDEEP
24576:e845rGHu6gVJKG75oFpA0VWeX4S2y1q2rJp0:745vRVJKGtSA0VWeohu9p0
Malware Config
Targets
-
-
Target
4c9c34bae83f227f2f3ea91b530aca5a_JaffaCakes118
-
Size
1.2MB
-
MD5
4c9c34bae83f227f2f3ea91b530aca5a
-
SHA1
11a2d936a520ec451ae2a63171cc8a8057a4d11f
-
SHA256
5eb06ef399084ebe01581ee51a2406a6352f410f9e345b37a784752733ce9067
-
SHA512
635f00de4c0a0579c48f12720e7cebf1169a918cd4f5a6590bed03cfa7b4bb0d8be5f802298c775ac753f507fbc014817d025aa249b75d184085df73a58d49d3
-
SSDEEP
24576:e845rGHu6gVJKG75oFpA0VWeX4S2y1q2rJp0:745vRVJKGtSA0VWeohu9p0
Score10/10-
MrBlack Trojan
IoT botnet which infects routers to be used for DDoS attacks.
-
MrBlack trojan
-
Executes dropped EXE
-
Modifies init.d
Adds/modifies system service, likely for persistence.
-
Write file to user bin folder
-
Writes file to system bin folder
-