General

  • Target

    bb9e93860450ddea4a9f4faaa5f496fbe1e90715cbf89cfe28fff58224c79d56N

  • Size

    70KB

  • Sample

    241018-sdtgfashke

  • MD5

    55c088b8535eeac9767154da189a5340

  • SHA1

    0f78de3e71fe34b48258d7a9c005b8bfa42ae744

  • SHA256

    bb9e93860450ddea4a9f4faaa5f496fbe1e90715cbf89cfe28fff58224c79d56

  • SHA512

    f30def3da564fe4208b2d8c594d93d89ce97f898bb51a478972f8e3302507854067b339b267218610e3add13550d4e86f32a3e8f6d01c319032728103af431a5

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZ5Rxfu:ymb3NkkiQ3mdBjF0yUmrfu

Malware Config

Targets

    • Target

      bb9e93860450ddea4a9f4faaa5f496fbe1e90715cbf89cfe28fff58224c79d56N

    • Size

      70KB

    • MD5

      55c088b8535eeac9767154da189a5340

    • SHA1

      0f78de3e71fe34b48258d7a9c005b8bfa42ae744

    • SHA256

      bb9e93860450ddea4a9f4faaa5f496fbe1e90715cbf89cfe28fff58224c79d56

    • SHA512

      f30def3da564fe4208b2d8c594d93d89ce97f898bb51a478972f8e3302507854067b339b267218610e3add13550d4e86f32a3e8f6d01c319032728103af431a5

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZ5Rxfu:ymb3NkkiQ3mdBjF0yUmrfu

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks