General

  • Target

    09a3b34fe56240a128fae1d49124ca0c50cb1bc2f1e98777e29f28f667882fc3

  • Size

    382KB

  • Sample

    241017-w22dqsydjh

  • MD5

    41b41bb39cc14987e25f883578701fdb

  • SHA1

    080f53e8ec01524becdbbb4302f170289726bf8f

  • SHA256

    09a3b34fe56240a128fae1d49124ca0c50cb1bc2f1e98777e29f28f667882fc3

  • SHA512

    e19426bf673f900a0a7102bd742200481bc627de5e0b4ba499005096ab5a7c37ba1bb4779f07dcc52a3dd7d5502b8a6ccfb6a2f0fd87facf755a54dabb9de96e

  • SSDEEP

    6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCy13:/4wFHoS4WEkMTHoSbG++tw+tYYy9

Malware Config

Targets

    • Target

      09a3b34fe56240a128fae1d49124ca0c50cb1bc2f1e98777e29f28f667882fc3

    • Size

      382KB

    • MD5

      41b41bb39cc14987e25f883578701fdb

    • SHA1

      080f53e8ec01524becdbbb4302f170289726bf8f

    • SHA256

      09a3b34fe56240a128fae1d49124ca0c50cb1bc2f1e98777e29f28f667882fc3

    • SHA512

      e19426bf673f900a0a7102bd742200481bc627de5e0b4ba499005096ab5a7c37ba1bb4779f07dcc52a3dd7d5502b8a6ccfb6a2f0fd87facf755a54dabb9de96e

    • SSDEEP

      6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCy13:/4wFHoS4WEkMTHoSbG++tw+tYYy9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks