General
-
Target
78a739d9d2175a90799eb88967096175_JaffaCakes118
-
Size
1.2MB
-
Sample
240730-tbyh2s1gjb
-
MD5
78a739d9d2175a90799eb88967096175
-
SHA1
e1509d72c1fa299c70143e0896d8ee660f796971
-
SHA256
54962b45a45df729630cb63d693b2570c0fc181bd81c29981bd4a97f80210d4b
-
SHA512
d4451b63f1eb50397a9c5c8925d8c42f2bc19b4219f8734cc053979a206af55cfb6c1c4183a1d1c69c3ef9eb310c1a03ff4e9b6d6dc4797c56ce3e0206c403f6
-
SSDEEP
24576:e845rGHu6gVJKG75oFpA0VWIX422y1q2rJp0:745vRVJKGtSA0VWIolu9p0
Malware Config
Targets
-
-
Target
78a739d9d2175a90799eb88967096175_JaffaCakes118
-
Size
1.2MB
-
MD5
78a739d9d2175a90799eb88967096175
-
SHA1
e1509d72c1fa299c70143e0896d8ee660f796971
-
SHA256
54962b45a45df729630cb63d693b2570c0fc181bd81c29981bd4a97f80210d4b
-
SHA512
d4451b63f1eb50397a9c5c8925d8c42f2bc19b4219f8734cc053979a206af55cfb6c1c4183a1d1c69c3ef9eb310c1a03ff4e9b6d6dc4797c56ce3e0206c403f6
-
SSDEEP
24576:e845rGHu6gVJKG75oFpA0VWIX422y1q2rJp0:745vRVJKGtSA0VWIolu9p0
Score10/10-
MrBlack Trojan
IoT botnet which infects routers to be used for DDoS attacks.
-
MrBlack trojan
-
Executes dropped EXE
-
Modifies init.d
Adds/modifies system service, likely for persistence.
-
Write file to user bin folder
-
Writes file to system bin folder
-