General

  • Target

    JaffaCakes118_1b1185068ee0829c3f9c19c58d491e37

  • Size

    451KB

  • Sample

    250123-zswzfavkcn

  • MD5

    1b1185068ee0829c3f9c19c58d491e37

  • SHA1

    77a22dcbbc628f3d4fefd94eabfd3796dbf704f5

  • SHA256

    6b0c7520db4e281b2712834a11db0e82d0f8720d79d0297a4f74a5499d0ff90f

  • SHA512

    ffef6f52e0a23b373a75a0781f42099c5737ff1002ed9456f8db846684efe314552235399b9c10888d5d8b389d97313e2b7e822ad5aa870728eda6c4a44b8e52

  • SSDEEP

    6144:AK3HTNGVvHI2zBHng5HaVsbZgRnyR4mULJhkHM6jI7H1D7puVSG:f3HcVvo21ga0aQ4HLJhkHM6jI7VD7w9

Malware Config

Targets

    • Target

      JaffaCakes118_1b1185068ee0829c3f9c19c58d491e37

    • Size

      451KB

    • MD5

      1b1185068ee0829c3f9c19c58d491e37

    • SHA1

      77a22dcbbc628f3d4fefd94eabfd3796dbf704f5

    • SHA256

      6b0c7520db4e281b2712834a11db0e82d0f8720d79d0297a4f74a5499d0ff90f

    • SHA512

      ffef6f52e0a23b373a75a0781f42099c5737ff1002ed9456f8db846684efe314552235399b9c10888d5d8b389d97313e2b7e822ad5aa870728eda6c4a44b8e52

    • SSDEEP

      6144:AK3HTNGVvHI2zBHng5HaVsbZgRnyR4mULJhkHM6jI7H1D7puVSG:f3HcVvo21ga0aQ4HLJhkHM6jI7VD7w9

    • Blackshades

      Blackshades is a remote access trojan with various capabilities.

    • Blackshades family

    • Blackshades payload

    • Modifies firewall policy service

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks