General

  • Target

    ed6103c4db892df3dfe7362c7cb939db4e498414b35b98057e45d71a855babbdN

  • Size

    72KB

  • Sample

    241018-rv9djsthrl

  • MD5

    48a14a56008816ab2cba9121afc68b50

  • SHA1

    88f815e444766d3f93175995c86504fd05a67838

  • SHA256

    ed6103c4db892df3dfe7362c7cb939db4e498414b35b98057e45d71a855babbd

  • SHA512

    ffb91efd11ad5d472c2909b0b2e17bf5f8d584a31293e8c6aa81a9b91c34c578eac6f37a886ffa57d3f62d247fbc328608771d881da3cb557c7edf4e9908fcea

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIdiW65x:ymb3NkkiQ3mdBjFIFdJ8bViW67

Malware Config

Targets

    • Target

      ed6103c4db892df3dfe7362c7cb939db4e498414b35b98057e45d71a855babbdN

    • Size

      72KB

    • MD5

      48a14a56008816ab2cba9121afc68b50

    • SHA1

      88f815e444766d3f93175995c86504fd05a67838

    • SHA256

      ed6103c4db892df3dfe7362c7cb939db4e498414b35b98057e45d71a855babbd

    • SHA512

      ffb91efd11ad5d472c2909b0b2e17bf5f8d584a31293e8c6aa81a9b91c34c578eac6f37a886ffa57d3f62d247fbc328608771d881da3cb557c7edf4e9908fcea

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIdiW65x:ymb3NkkiQ3mdBjFIFdJ8bViW67

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks