General

  • Target

    867fb434acc4c3716e725b458583ad923777739c0eff99cd59d2ba013040d649

  • Size

    58KB

  • Sample

    240621-ar8jeatclf

  • MD5

    461e95a6253beae39885f5870056dc4e

  • SHA1

    2950c631edcd3c335b8a52f4a1127aae7d2a9562

  • SHA256

    867fb434acc4c3716e725b458583ad923777739c0eff99cd59d2ba013040d649

  • SHA512

    8a7a435c73f37d77b3ee425afd732f7c6d3dd6da20b0a5ff2fd91833157c9e8d16b554dffeac58fc7ec2575a902b3ac1c358298b217325f9dd48c4eb9bca01f5

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9Lnc:ymb3NkkiQ3mdBjFI9A

Malware Config

Targets

    • Target

      867fb434acc4c3716e725b458583ad923777739c0eff99cd59d2ba013040d649

    • Size

      58KB

    • MD5

      461e95a6253beae39885f5870056dc4e

    • SHA1

      2950c631edcd3c335b8a52f4a1127aae7d2a9562

    • SHA256

      867fb434acc4c3716e725b458583ad923777739c0eff99cd59d2ba013040d649

    • SHA512

      8a7a435c73f37d77b3ee425afd732f7c6d3dd6da20b0a5ff2fd91833157c9e8d16b554dffeac58fc7ec2575a902b3ac1c358298b217325f9dd48c4eb9bca01f5

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9Lnc:ymb3NkkiQ3mdBjFI9A

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks