General

  • Target

    586b0bd5539aca526d396624015ac2f4_JaffaCakes118

  • Size

    117KB

  • Sample

    241018-twv9esydqn

  • MD5

    586b0bd5539aca526d396624015ac2f4

  • SHA1

    a7f9416cfc9057843d8a1034ecf423d59fa1cd45

  • SHA256

    699b5fb8c9fba4f5cf706e2aec41c4b3fbf69b139ff0950444bc8fe2aeb10b89

  • SHA512

    893fc5584def676ebd8a4b5e3b886263a09e426ee02482be790fde3cd3dde514a6935c286011f66ac74a864da3d2f9e83454a0a1d025c7161b9a2425139697ff

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9EarSAcUeFN+T:ymb3NkkiQ3mdBjFo73tvn+Yp9WT6jwi

Malware Config

Targets

    • Target

      586b0bd5539aca526d396624015ac2f4_JaffaCakes118

    • Size

      117KB

    • MD5

      586b0bd5539aca526d396624015ac2f4

    • SHA1

      a7f9416cfc9057843d8a1034ecf423d59fa1cd45

    • SHA256

      699b5fb8c9fba4f5cf706e2aec41c4b3fbf69b139ff0950444bc8fe2aeb10b89

    • SHA512

      893fc5584def676ebd8a4b5e3b886263a09e426ee02482be790fde3cd3dde514a6935c286011f66ac74a864da3d2f9e83454a0a1d025c7161b9a2425139697ff

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9EarSAcUeFN+T:ymb3NkkiQ3mdBjFo73tvn+Yp9WT6jwi

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks