General

  • Target

    39fe4daac4b845b2012be9100f9a28debc62cf20704dc1df6818846aa887b185

  • Size

    67KB

  • Sample

    240620-z2sclsxdmb

  • MD5

    69bd1a19b71d524bf1e9873d407af6db

  • SHA1

    9642716f2cc5667ca8d08d584bdedf316c0c2742

  • SHA256

    39fe4daac4b845b2012be9100f9a28debc62cf20704dc1df6818846aa887b185

  • SHA512

    727fba01fb2678ce60b112ef0ea0d0ac4a18bc5c08fbbe58586368897633446b3e9c3c357152cbf872c19e2d8640110c8e8e37fa04b2949aca866029bf203262

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZ3:ymb3NkkiQ3mdBjF0yUmR

Malware Config

Targets

    • Target

      39fe4daac4b845b2012be9100f9a28debc62cf20704dc1df6818846aa887b185

    • Size

      67KB

    • MD5

      69bd1a19b71d524bf1e9873d407af6db

    • SHA1

      9642716f2cc5667ca8d08d584bdedf316c0c2742

    • SHA256

      39fe4daac4b845b2012be9100f9a28debc62cf20704dc1df6818846aa887b185

    • SHA512

      727fba01fb2678ce60b112ef0ea0d0ac4a18bc5c08fbbe58586368897633446b3e9c3c357152cbf872c19e2d8640110c8e8e37fa04b2949aca866029bf203262

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZ3:ymb3NkkiQ3mdBjF0yUmR

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks