General

  • Target

    52992774584694932a5ce636d537cc7594cafa3e8d71f1acd146a9cfaed4ba52

  • Size

    445KB

  • Sample

    240621-1cvl4ssapc

  • MD5

    0c995d2318db70c18477b63070eeb9f0

  • SHA1

    d13643a7c7ed49dbeeaee66eb593f1385d3a0487

  • SHA256

    52992774584694932a5ce636d537cc7594cafa3e8d71f1acd146a9cfaed4ba52

  • SHA512

    d7fd39d87603e8ab19a26dc5057f523a2ef70c28d7c3d8599fd6bedd91c09d361d3b99aa9b0269fcdebfeeddbd2791993384e1b0b8024195ef155c47a6b8889a

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09Jl:n3C9ytvn8whkb4i3e3GFO6Jl

Malware Config

Targets

    • Target

      52992774584694932a5ce636d537cc7594cafa3e8d71f1acd146a9cfaed4ba52

    • Size

      445KB

    • MD5

      0c995d2318db70c18477b63070eeb9f0

    • SHA1

      d13643a7c7ed49dbeeaee66eb593f1385d3a0487

    • SHA256

      52992774584694932a5ce636d537cc7594cafa3e8d71f1acd146a9cfaed4ba52

    • SHA512

      d7fd39d87603e8ab19a26dc5057f523a2ef70c28d7c3d8599fd6bedd91c09d361d3b99aa9b0269fcdebfeeddbd2791993384e1b0b8024195ef155c47a6b8889a

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09Jl:n3C9ytvn8whkb4i3e3GFO6Jl

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks