General

  • Target

    fff4e70989527d117844d2637fab2f297529b9981feca705353c65cc974d5959N

  • Size

    71KB

  • Sample

    241017-swj1qawekq

  • MD5

    a76e63d242d7c9c379313ad79be93ed0

  • SHA1

    6b77d956b54baa67abde0f4eaf8146a648382340

  • SHA256

    fff4e70989527d117844d2637fab2f297529b9981feca705353c65cc974d5959

  • SHA512

    15708cb3d329159682c80db019ff442c71272e8fbc20ab413019c2bf5ca2ea99736b8bd4a3c39def5ee2fd7883ece8b98cf852da2d2fff4e7eaa940cadb00dd6

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjU:ymb3NkkiQ3mdBjFI4Vk

Malware Config

Targets

    • Target

      fff4e70989527d117844d2637fab2f297529b9981feca705353c65cc974d5959N

    • Size

      71KB

    • MD5

      a76e63d242d7c9c379313ad79be93ed0

    • SHA1

      6b77d956b54baa67abde0f4eaf8146a648382340

    • SHA256

      fff4e70989527d117844d2637fab2f297529b9981feca705353c65cc974d5959

    • SHA512

      15708cb3d329159682c80db019ff442c71272e8fbc20ab413019c2bf5ca2ea99736b8bd4a3c39def5ee2fd7883ece8b98cf852da2d2fff4e7eaa940cadb00dd6

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjU:ymb3NkkiQ3mdBjFI4Vk

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks