General

  • Target

    124136f9f80aa808352c4d2f201db3eaf16bd424c02c96bef141b092df75c724

  • Size

    453KB

  • Sample

    241017-xd58fssflm

  • MD5

    a91b92359fd518957432a6c721c0c6e9

  • SHA1

    1dc08c771b2f34287ff035903c9a45c6c0fe49d3

  • SHA256

    124136f9f80aa808352c4d2f201db3eaf16bd424c02c96bef141b092df75c724

  • SHA512

    cda5e453c799d4e76477c2813a82384d10e7d45fabd39bf1a95edfe72ecda81f4329c23f1d8b0321c7fbf922ecf79fb4c0e5ef9f402ea20d05e9c55f9df4fc83

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe2:q7Tc2NYHUrAwfMp3CD2

Malware Config

Targets

    • Target

      124136f9f80aa808352c4d2f201db3eaf16bd424c02c96bef141b092df75c724

    • Size

      453KB

    • MD5

      a91b92359fd518957432a6c721c0c6e9

    • SHA1

      1dc08c771b2f34287ff035903c9a45c6c0fe49d3

    • SHA256

      124136f9f80aa808352c4d2f201db3eaf16bd424c02c96bef141b092df75c724

    • SHA512

      cda5e453c799d4e76477c2813a82384d10e7d45fabd39bf1a95edfe72ecda81f4329c23f1d8b0321c7fbf922ecf79fb4c0e5ef9f402ea20d05e9c55f9df4fc83

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe2:q7Tc2NYHUrAwfMp3CD2

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks