General

  • Target

    49a8a62ca20a4a44ad5b4d9919236929fc6332b54f82d721972e162ab48a32b9N

  • Size

    78KB

  • Sample

    241018-ldv7psygph

  • MD5

    627868f3f4ef589bbfe18425049eb210

  • SHA1

    84fb20cc917c51405dbb9df4849dd57af8971421

  • SHA256

    49a8a62ca20a4a44ad5b4d9919236929fc6332b54f82d721972e162ab48a32b9

  • SHA512

    8cc9526ebf09b50ec79a106701bf79ca15d6c4d5099306b037a4d607fde4bee092d3eddc3b6f28c5980fee827e7c26e2fe6ca7c7725ed31dd3d540a60cd5743b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJNQY:ymb3NkkiQ3mdBjF+3TU2KEJNQY

Malware Config

Targets

    • Target

      49a8a62ca20a4a44ad5b4d9919236929fc6332b54f82d721972e162ab48a32b9N

    • Size

      78KB

    • MD5

      627868f3f4ef589bbfe18425049eb210

    • SHA1

      84fb20cc917c51405dbb9df4849dd57af8971421

    • SHA256

      49a8a62ca20a4a44ad5b4d9919236929fc6332b54f82d721972e162ab48a32b9

    • SHA512

      8cc9526ebf09b50ec79a106701bf79ca15d6c4d5099306b037a4d607fde4bee092d3eddc3b6f28c5980fee827e7c26e2fe6ca7c7725ed31dd3d540a60cd5743b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJNQY:ymb3NkkiQ3mdBjF+3TU2KEJNQY

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks