General

  • Target

    097837192177a0fb66334f277c3369c747b8b60ada964fb8c7ae40c7f3d9c74a

  • Size

    64KB

  • Sample

    240621-w52hxatblr

  • MD5

    a26c9219269c565445d6b8a46b2919c0

  • SHA1

    cf51cacf31b188ad611f04371a9e9d523740915d

  • SHA256

    097837192177a0fb66334f277c3369c747b8b60ada964fb8c7ae40c7f3d9c74a

  • SHA512

    efb14a61f974f380d09c8baf1305f36dc988b2c5664ada9dbec8942d9af9c3c80e34b39863c13fcd78fe9bdaf2a58006e46e02d84158184ce84ad159a671a9ce

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDwO:ymb3NkkiQ3mdBjFIk5

Malware Config

Targets

    • Target

      097837192177a0fb66334f277c3369c747b8b60ada964fb8c7ae40c7f3d9c74a

    • Size

      64KB

    • MD5

      a26c9219269c565445d6b8a46b2919c0

    • SHA1

      cf51cacf31b188ad611f04371a9e9d523740915d

    • SHA256

      097837192177a0fb66334f277c3369c747b8b60ada964fb8c7ae40c7f3d9c74a

    • SHA512

      efb14a61f974f380d09c8baf1305f36dc988b2c5664ada9dbec8942d9af9c3c80e34b39863c13fcd78fe9bdaf2a58006e46e02d84158184ce84ad159a671a9ce

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDwO:ymb3NkkiQ3mdBjFIk5

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks