General

  • Target

    0a0cb589b9c16bf00c9bb59c2da2d5a9fa4c0f1ab2b013a89b3a6e753ffa8e8e

  • Size

    345KB

  • Sample

    241017-w3vmksydnc

  • MD5

    b35f879de8dde74491ecb20e62820f66

  • SHA1

    710b97712d963c25aa9e0b0208ba251922d319b1

  • SHA256

    0a0cb589b9c16bf00c9bb59c2da2d5a9fa4c0f1ab2b013a89b3a6e753ffa8e8e

  • SHA512

    5d2ba9c3148f4c9407c4a04519e1ebf57a01f634f9546179f6543f106e9b7ff37b1a32dc53fde88a6a146cacc9cd3e62b80cdd1a08bad727671023ba3e04b63a

  • SSDEEP

    6144:Xcm7ImGddXgYW5fNZWB5hFfci3Add4kGYA5:l7TcbWXZshJX2VGd5

Malware Config

Targets

    • Target

      0a0cb589b9c16bf00c9bb59c2da2d5a9fa4c0f1ab2b013a89b3a6e753ffa8e8e

    • Size

      345KB

    • MD5

      b35f879de8dde74491ecb20e62820f66

    • SHA1

      710b97712d963c25aa9e0b0208ba251922d319b1

    • SHA256

      0a0cb589b9c16bf00c9bb59c2da2d5a9fa4c0f1ab2b013a89b3a6e753ffa8e8e

    • SHA512

      5d2ba9c3148f4c9407c4a04519e1ebf57a01f634f9546179f6543f106e9b7ff37b1a32dc53fde88a6a146cacc9cd3e62b80cdd1a08bad727671023ba3e04b63a

    • SSDEEP

      6144:Xcm7ImGddXgYW5fNZWB5hFfci3Add4kGYA5:l7TcbWXZshJX2VGd5

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks