General

  • Target

    JaffaCakes118_e59ef86d3f6264fb0ab5fa506a42fcb6

  • Size

    113KB

  • Sample

    250211-m2xk4svlgk

  • MD5

    e59ef86d3f6264fb0ab5fa506a42fcb6

  • SHA1

    33ab957fe4776f92b083cf6d387fe383d2d60f22

  • SHA256

    01e9455df77f7581b7535b873bf821819aacd9de3f308082b262d16952ecc9d0

  • SHA512

    bb386ac97bdf7b20740ca18310e9588363dbbd4f818a18c36d4a9dcfec2b9000d31de289e4bd842698bbd94cfdb919cb9b414f1c02f116fc596da713f7f4c5fe

  • SSDEEP

    3072:FOEY4TjVzg8252TDH+U0p+Cjey9NxOjCzYsKF8tW:F1Y4TZg8ZH+U0hj19NxECzYBKk

Malware Config

Targets

    • Target

      JaffaCakes118_e59ef86d3f6264fb0ab5fa506a42fcb6

    • Size

      113KB

    • MD5

      e59ef86d3f6264fb0ab5fa506a42fcb6

    • SHA1

      33ab957fe4776f92b083cf6d387fe383d2d60f22

    • SHA256

      01e9455df77f7581b7535b873bf821819aacd9de3f308082b262d16952ecc9d0

    • SHA512

      bb386ac97bdf7b20740ca18310e9588363dbbd4f818a18c36d4a9dcfec2b9000d31de289e4bd842698bbd94cfdb919cb9b414f1c02f116fc596da713f7f4c5fe

    • SSDEEP

      3072:FOEY4TjVzg8252TDH+U0p+Cjey9NxOjCzYsKF8tW:F1Y4TZg8ZH+U0hj19NxECzYBKk

    • Blackshades

      Blackshades is a remote access trojan with various capabilities.

    • Blackshades family

    • Blackshades payload

    • Modifies firewall policy service

    • Downloads MZ/PE file

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks