General

  • Target

    268e971a41ba67be95fd150f0aae511602522a32dec31deb5c50afdf03e50d12N

  • Size

    70KB

  • Sample

    241018-l5nxps1cjf

  • MD5

    5751e0f2673bb96c32bf6b40533eccb0

  • SHA1

    d8ecacb935213eb910daac3f3c35f71893895017

  • SHA256

    268e971a41ba67be95fd150f0aae511602522a32dec31deb5c50afdf03e50d12

  • SHA512

    e0b154ce11fbd611f0f2b13530c483579f1409d2ecd94157bfd81ce84c7d13d31a02684141c424a0255cdc1d5ec191123ba2d5db7555e553a09993737593d1b9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfj5d:ymb3NkkiQ3mdBjFI4Vf

Malware Config

Targets

    • Target

      268e971a41ba67be95fd150f0aae511602522a32dec31deb5c50afdf03e50d12N

    • Size

      70KB

    • MD5

      5751e0f2673bb96c32bf6b40533eccb0

    • SHA1

      d8ecacb935213eb910daac3f3c35f71893895017

    • SHA256

      268e971a41ba67be95fd150f0aae511602522a32dec31deb5c50afdf03e50d12

    • SHA512

      e0b154ce11fbd611f0f2b13530c483579f1409d2ecd94157bfd81ce84c7d13d31a02684141c424a0255cdc1d5ec191123ba2d5db7555e553a09993737593d1b9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfj5d:ymb3NkkiQ3mdBjFI4Vf

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks