General

  • Target

    a142998fca9c12f4160eb2e36e2f5f10N

  • Size

    80KB

  • Sample

    240908-qret4a1bne

  • MD5

    a142998fca9c12f4160eb2e36e2f5f10

  • SHA1

    16734c7c7c1df4c5fdab6271ae99675f85796566

  • SHA256

    a7015d10f6b924f00acac405507a811ed462ecf4348cd37478f90e18185aa66b

  • SHA512

    6da9003e499e9d93ac8f9b33d4c1c547c53210fb4b13709ad6dbe755c8c1f554adb12bdf20e1f0cd6c0b6ef6a1577509d681aadba023d0111ed99c2449d3052d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC52v:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCm

Malware Config

Targets

    • Target

      a142998fca9c12f4160eb2e36e2f5f10N

    • Size

      80KB

    • MD5

      a142998fca9c12f4160eb2e36e2f5f10

    • SHA1

      16734c7c7c1df4c5fdab6271ae99675f85796566

    • SHA256

      a7015d10f6b924f00acac405507a811ed462ecf4348cd37478f90e18185aa66b

    • SHA512

      6da9003e499e9d93ac8f9b33d4c1c547c53210fb4b13709ad6dbe755c8c1f554adb12bdf20e1f0cd6c0b6ef6a1577509d681aadba023d0111ed99c2449d3052d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC52v:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCm

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks