General

  • Target

    b53648eef98074d655361db6ed1adadc6e43802f69b7f90be78f2d6c7edb8aceN

  • Size

    94KB

  • Sample

    241017-klez1stdnm

  • MD5

    db217212e6f7655fcc0b61b3b2299470

  • SHA1

    af3661b8c704723d9ed83bbaa7a77281e998c977

  • SHA256

    b53648eef98074d655361db6ed1adadc6e43802f69b7f90be78f2d6c7edb8ace

  • SHA512

    70f708b48d0d436f06be857cfe900ae5f1f286d3c0541e9a7b22d4f8c7fd6af68304a023d357b8f3f2df50d7f4990bb6f55bb1c8b44fdd0bf280ab258679fa6e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dY36i9XFhiKjVx:ymb3NkkiQ3mdBjFo7LAIb+FbI+T1

Malware Config

Targets

    • Target

      b53648eef98074d655361db6ed1adadc6e43802f69b7f90be78f2d6c7edb8aceN

    • Size

      94KB

    • MD5

      db217212e6f7655fcc0b61b3b2299470

    • SHA1

      af3661b8c704723d9ed83bbaa7a77281e998c977

    • SHA256

      b53648eef98074d655361db6ed1adadc6e43802f69b7f90be78f2d6c7edb8ace

    • SHA512

      70f708b48d0d436f06be857cfe900ae5f1f286d3c0541e9a7b22d4f8c7fd6af68304a023d357b8f3f2df50d7f4990bb6f55bb1c8b44fdd0bf280ab258679fa6e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dY36i9XFhiKjVx:ymb3NkkiQ3mdBjFo7LAIb+FbI+T1

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks