General

  • Target

    3bd9ba8ed5cbf83bca39c12b86dc2577bf96265a8713cbf7a55856c12b48355a

  • Size

    83KB

  • Sample

    241017-zmxzjswapb

  • MD5

    38d6a685a6da29c2178d6a63523f80f2

  • SHA1

    fccf4d89fb88bd97804ddd2bcec94a6659de1c31

  • SHA256

    3bd9ba8ed5cbf83bca39c12b86dc2577bf96265a8713cbf7a55856c12b48355a

  • SHA512

    314ee6815173ccabcae1ebe84a9b2ece9b17494f2ab40989f50ef8070b32da008b325af767c15742c0cf222e4e9d8e1d67e4943e4d56c56426eb2212c4156c0c

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MwIYSPEj4W:ymb3NkkiQ3mdBjFo73t+SMj4W

Malware Config

Targets

    • Target

      3bd9ba8ed5cbf83bca39c12b86dc2577bf96265a8713cbf7a55856c12b48355a

    • Size

      83KB

    • MD5

      38d6a685a6da29c2178d6a63523f80f2

    • SHA1

      fccf4d89fb88bd97804ddd2bcec94a6659de1c31

    • SHA256

      3bd9ba8ed5cbf83bca39c12b86dc2577bf96265a8713cbf7a55856c12b48355a

    • SHA512

      314ee6815173ccabcae1ebe84a9b2ece9b17494f2ab40989f50ef8070b32da008b325af767c15742c0cf222e4e9d8e1d67e4943e4d56c56426eb2212c4156c0c

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MwIYSPEj4W:ymb3NkkiQ3mdBjFo73t+SMj4W

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks