General

  • Target

    3b6eeb320fd42a59543e5a2217b22bf6c1dda00eb0a6ab7db16e77b9fcb8bd33N

  • Size

    66KB

  • Sample

    241017-kg68pszeld

  • MD5

    010b9c5bf0db3e3e6e9db3c055d7dc40

  • SHA1

    f866050d25f054134a52ebc9bd66934710cc9d38

  • SHA256

    3b6eeb320fd42a59543e5a2217b22bf6c1dda00eb0a6ab7db16e77b9fcb8bd33

  • SHA512

    9fb4ae72ea16a8c1ebf3901fad8cec5bfc2ec80818208412de20681a6bda0099d1665e2c4f36b3527bc49f0623ccbf8f2311b752805f8fe1ee4785f1e50a4290

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxeY:ymb3NkkiQ3mdBjF0y7kbUY

Malware Config

Targets

    • Target

      3b6eeb320fd42a59543e5a2217b22bf6c1dda00eb0a6ab7db16e77b9fcb8bd33N

    • Size

      66KB

    • MD5

      010b9c5bf0db3e3e6e9db3c055d7dc40

    • SHA1

      f866050d25f054134a52ebc9bd66934710cc9d38

    • SHA256

      3b6eeb320fd42a59543e5a2217b22bf6c1dda00eb0a6ab7db16e77b9fcb8bd33

    • SHA512

      9fb4ae72ea16a8c1ebf3901fad8cec5bfc2ec80818208412de20681a6bda0099d1665e2c4f36b3527bc49f0623ccbf8f2311b752805f8fe1ee4785f1e50a4290

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+kbxeY:ymb3NkkiQ3mdBjF0y7kbUY

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks