General

  • Target

    JaffaCakes118_537cb4a270e4e52d7833e81e932bf707

  • Size

    375KB

  • Sample

    250129-gpprvasnev

  • MD5

    537cb4a270e4e52d7833e81e932bf707

  • SHA1

    e662ec884bdb3a354fc34d3ec961fe684b9bb1da

  • SHA256

    3b088dfe6b2888e536cb788a8c224a65f22ae1880ed79594bc67ff70a99f8e78

  • SHA512

    cc98072a2cb86bccc0ac6923932d42443b5b7e63963033eba969195efafa95ea8ee62d18e2a24a0c8f478e4b61f7cce744d7f1279ab6c2a506301fa91c5d4c2b

  • SSDEEP

    6144:EQf4+NhJ1PEXzVBlK93LlpHsyD/gN68I9Pu2ygsVBTh6Ch8PQZTrgdA9:rTPEXzVBlKPMyjK68uVs/h6oSQZTrgdg

Malware Config

Targets

    • Target

      JaffaCakes118_537cb4a270e4e52d7833e81e932bf707

    • Size

      375KB

    • MD5

      537cb4a270e4e52d7833e81e932bf707

    • SHA1

      e662ec884bdb3a354fc34d3ec961fe684b9bb1da

    • SHA256

      3b088dfe6b2888e536cb788a8c224a65f22ae1880ed79594bc67ff70a99f8e78

    • SHA512

      cc98072a2cb86bccc0ac6923932d42443b5b7e63963033eba969195efafa95ea8ee62d18e2a24a0c8f478e4b61f7cce744d7f1279ab6c2a506301fa91c5d4c2b

    • SSDEEP

      6144:EQf4+NhJ1PEXzVBlK93LlpHsyD/gN68I9Pu2ygsVBTh6Ch8PQZTrgdA9:rTPEXzVBlKPMyjK68uVs/h6oSQZTrgdg

    • Blackshades

      Blackshades is a remote access trojan with various capabilities.

    • Blackshades family

    • Blackshades payload

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks