General

  • Target

    SecuriteInfo.com.Win32.MalwareX-gen.23947.21328.exe

  • Size

    13.2MB

  • Sample

    241018-1ggaaazbrb

  • MD5

    69885c444a95500286ec5fe05e564990

  • SHA1

    d8b1bec23932c607cfe420496f3f80bde9207955

  • SHA256

    526d2385da97308568e905d976dd976b95dc8f0c1f7d5155e543c6825b74dc46

  • SHA512

    4a22747f5f2e35f1a18e669114b0db90185c60db017f3887d75b33a2ca0d29d523f8760fa7e2a73dbe68737a93ae4dc93f88f55c1f18371c8b6ade67672300e3

  • SSDEEP

    393216:QdXg3mXTzR/2MNBSTRZdbQtSF/K3j3Or8:IQu/2MDSTPJmVP

Malware Config

Targets

    • Target

      SecuriteInfo.com.Win32.MalwareX-gen.23947.21328.exe

    • Size

      13.2MB

    • MD5

      69885c444a95500286ec5fe05e564990

    • SHA1

      d8b1bec23932c607cfe420496f3f80bde9207955

    • SHA256

      526d2385da97308568e905d976dd976b95dc8f0c1f7d5155e543c6825b74dc46

    • SHA512

      4a22747f5f2e35f1a18e669114b0db90185c60db017f3887d75b33a2ca0d29d523f8760fa7e2a73dbe68737a93ae4dc93f88f55c1f18371c8b6ade67672300e3

    • SSDEEP

      393216:QdXg3mXTzR/2MNBSTRZdbQtSF/K3j3Or8:IQu/2MDSTPJmVP

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks