General

  • Target

    505f8b7d635fa61687963632aca66228c911f97d6cbbb5bad61302409f784e67

  • Size

    190KB

  • Sample

    240605-2ppgasca33

  • MD5

    a178b7cb6f2fc0e33a7a3612ddc71fdb

  • SHA1

    fc82f6ddc23bacc37dcc5ee062e210d65b742fa0

  • SHA256

    505f8b7d635fa61687963632aca66228c911f97d6cbbb5bad61302409f784e67

  • SHA512

    faac4301ab5a6e859cc7473e0b693bcd928d2314891faef247bd1509316b7e5362ed9568d0310b969289605f4b36f7744226d299bb0aedeb85848c0a700935dd

  • SSDEEP

    3072:YhOmTsF93UYfwC6GIoutLmxHxae5yLpcgDE4JBuItR8pTsgnKbQFe3+LY:Ycm4FmowdHoSLEaTBftapTsyFeO0

Score
10/10

Malware Config

Targets

    • Target

      505f8b7d635fa61687963632aca66228c911f97d6cbbb5bad61302409f784e67

    • Size

      190KB

    • MD5

      a178b7cb6f2fc0e33a7a3612ddc71fdb

    • SHA1

      fc82f6ddc23bacc37dcc5ee062e210d65b742fa0

    • SHA256

      505f8b7d635fa61687963632aca66228c911f97d6cbbb5bad61302409f784e67

    • SHA512

      faac4301ab5a6e859cc7473e0b693bcd928d2314891faef247bd1509316b7e5362ed9568d0310b969289605f4b36f7744226d299bb0aedeb85848c0a700935dd

    • SSDEEP

      3072:YhOmTsF93UYfwC6GIoutLmxHxae5yLpcgDE4JBuItR8pTsgnKbQFe3+LY:Ycm4FmowdHoSLEaTBftapTsyFeO0

    Score
    10/10
    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

MITRE ATT&CK Matrix

Tasks