General

  • Target

    f69512f49e969dbb6c87d80174ef6684788a4fb8e983cea8372c4e642634040a

  • Size

    5.1MB

  • Sample

    240524-pc65csab4t

  • MD5

    23d5951105666ed00f871023fe03892c

  • SHA1

    65e1152b3aa8ab75b2bc16118a40c705ab52be19

  • SHA256

    f69512f49e969dbb6c87d80174ef6684788a4fb8e983cea8372c4e642634040a

  • SHA512

    ac72dc0b1e20e79d9ec0fee7b2f082beac154fe9f8ebcbc17edc2dd62bbebf03c75db32ff38038ebc0e40b2113fad40fbef3ea6f6476f22d85dcf1578e66051d

  • SSDEEP

    98304:1Tr8wXcgDitSg8BUn/lgXV4yxFrSQkXHleqg48hWKC98:xYwMiNgCUn/lgXV9nNkXHg481C9

Malware Config

Targets

    • Target

      f69512f49e969dbb6c87d80174ef6684788a4fb8e983cea8372c4e642634040a

    • Size

      5.1MB

    • MD5

      23d5951105666ed00f871023fe03892c

    • SHA1

      65e1152b3aa8ab75b2bc16118a40c705ab52be19

    • SHA256

      f69512f49e969dbb6c87d80174ef6684788a4fb8e983cea8372c4e642634040a

    • SHA512

      ac72dc0b1e20e79d9ec0fee7b2f082beac154fe9f8ebcbc17edc2dd62bbebf03c75db32ff38038ebc0e40b2113fad40fbef3ea6f6476f22d85dcf1578e66051d

    • SSDEEP

      98304:1Tr8wXcgDitSg8BUn/lgXV4yxFrSQkXHleqg48hWKC98:xYwMiNgCUn/lgXV9nNkXHg481C9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks