General

  • Target

    99b5d2f3e5e39dd087dd218827cf4a2d0f7299400b7ba55d0c54940b9a734be4N

  • Size

    231KB

  • Sample

    241017-ve1m9ayejl

  • MD5

    80881c1aa22234077a6289bbcff436c0

  • SHA1

    704719568aa1693eba7ce8ed484d7d1dfc34702c

  • SHA256

    99b5d2f3e5e39dd087dd218827cf4a2d0f7299400b7ba55d0c54940b9a734be4

  • SHA512

    3861469de08e5528a824c36993646719f5b511babe5546f0f9ddbde09fee3cb2bf6eca8d441b8c435651f29f51376b640451c8b1bb15bf355c29738152b7aae0

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31x4xLjBeG+LV:n3C9BRo7MlrWKo+lxKk

Malware Config

Targets

    • Target

      99b5d2f3e5e39dd087dd218827cf4a2d0f7299400b7ba55d0c54940b9a734be4N

    • Size

      231KB

    • MD5

      80881c1aa22234077a6289bbcff436c0

    • SHA1

      704719568aa1693eba7ce8ed484d7d1dfc34702c

    • SHA256

      99b5d2f3e5e39dd087dd218827cf4a2d0f7299400b7ba55d0c54940b9a734be4

    • SHA512

      3861469de08e5528a824c36993646719f5b511babe5546f0f9ddbde09fee3cb2bf6eca8d441b8c435651f29f51376b640451c8b1bb15bf355c29738152b7aae0

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31x4xLjBeG+LV:n3C9BRo7MlrWKo+lxKk

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks