General

  • Target

    de98399bd563fa1b07bc818de47f3e0b55ff0adede05c97c83a879c384959d48

  • Size

    9.4MB

  • Sample

    240524-qdebeaef8x

  • MD5

    6613dac29edc23011eba67795d301e76

  • SHA1

    84cd3432a0b854667b55c889535ac1aa6a0beda5

  • SHA256

    de98399bd563fa1b07bc818de47f3e0b55ff0adede05c97c83a879c384959d48

  • SHA512

    4297d93240f686ec003dbe186d870677c9dd68b14d922500f28c5ba3cf5674b786bb872958e7d3220349ada61feaf30823405ccacbec518b390d134d0024540d

  • SSDEEP

    196608:+VUnc32/SYNcEHQfCd6dWkUSgW38E9MWGNMc3gSxP:Znc32/SYNcEwNWkNgWsE6WGNFwU

Score
10/10

Malware Config

Targets

    • Target

      de98399bd563fa1b07bc818de47f3e0b55ff0adede05c97c83a879c384959d48

    • Size

      9.4MB

    • MD5

      6613dac29edc23011eba67795d301e76

    • SHA1

      84cd3432a0b854667b55c889535ac1aa6a0beda5

    • SHA256

      de98399bd563fa1b07bc818de47f3e0b55ff0adede05c97c83a879c384959d48

    • SHA512

      4297d93240f686ec003dbe186d870677c9dd68b14d922500f28c5ba3cf5674b786bb872958e7d3220349ada61feaf30823405ccacbec518b390d134d0024540d

    • SSDEEP

      196608:+VUnc32/SYNcEHQfCd6dWkUSgW38E9MWGNMc3gSxP:Znc32/SYNcEwNWkNgWsE6WGNFwU

    Score
    10/10
    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks