General

  • Target

    7b43e0824bd6fd8d7c254d3b2301f5bc776c4c640644f18c402f764c597b4d48

  • Size

    307KB

  • Sample

    240621-aa3xlaxcqn

  • MD5

    359d59f9dccc218ec437da8985e35570

  • SHA1

    0efdc24749660aad6eda3e8de435a6e5e30c096a

  • SHA256

    7b43e0824bd6fd8d7c254d3b2301f5bc776c4c640644f18c402f764c597b4d48

  • SHA512

    099458000fc009541d6e9c164db1ca57e98c4014a6c99da47cbdaf35e4aef6e04a98b6d273b772958c4bd7164264817b4602de5de6ec3c6207c8fcf24efb4879

  • SSDEEP

    6144:n3C9BRo/AIuuOthLmH403Pyr6UWO6jUl7sPgvwNR:n3C9uDVOXLmHBKWyn+PgvuR

Malware Config

Targets

    • Target

      7b43e0824bd6fd8d7c254d3b2301f5bc776c4c640644f18c402f764c597b4d48

    • Size

      307KB

    • MD5

      359d59f9dccc218ec437da8985e35570

    • SHA1

      0efdc24749660aad6eda3e8de435a6e5e30c096a

    • SHA256

      7b43e0824bd6fd8d7c254d3b2301f5bc776c4c640644f18c402f764c597b4d48

    • SHA512

      099458000fc009541d6e9c164db1ca57e98c4014a6c99da47cbdaf35e4aef6e04a98b6d273b772958c4bd7164264817b4602de5de6ec3c6207c8fcf24efb4879

    • SSDEEP

      6144:n3C9BRo/AIuuOthLmH403Pyr6UWO6jUl7sPgvwNR:n3C9uDVOXLmHBKWyn+PgvuR

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks