General

  • Target

    eca6a748a6b81776e1a93a846b0f97913d5ac48868034e999beb67a0727d9e7bN

  • Size

    75KB

  • Sample

    241017-lz3hxawdlm

  • MD5

    e5f1194faf60ecd8eb01840262a0bcb0

  • SHA1

    eaf81cd05b40f74daa69f665722ea44558296cec

  • SHA256

    eca6a748a6b81776e1a93a846b0f97913d5ac48868034e999beb67a0727d9e7b

  • SHA512

    548570f3fde76ce0c56174a41b7bf7a6f6db9aa1df7186e501e614353616d1f8e342d309cf91b88f3edf9e6d018a0100075532e96671b4479c2d0132997fc36d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHm8:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHx

Malware Config

Targets

    • Target

      eca6a748a6b81776e1a93a846b0f97913d5ac48868034e999beb67a0727d9e7bN

    • Size

      75KB

    • MD5

      e5f1194faf60ecd8eb01840262a0bcb0

    • SHA1

      eaf81cd05b40f74daa69f665722ea44558296cec

    • SHA256

      eca6a748a6b81776e1a93a846b0f97913d5ac48868034e999beb67a0727d9e7b

    • SHA512

      548570f3fde76ce0c56174a41b7bf7a6f6db9aa1df7186e501e614353616d1f8e342d309cf91b88f3edf9e6d018a0100075532e96671b4479c2d0132997fc36d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHm8:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks