General

  • Target

    6e34bdcc30a64fc49728c4875548c39bf12b9c7e574b6988756d21ab1d6cb342N

  • Size

    94KB

  • Sample

    241018-wrglks1cjh

  • MD5

    5e62e687bff8b221a7bc9ce25c44af40

  • SHA1

    782b3c99c29b1733532838e1a00c4fba6e1820da

  • SHA256

    6e34bdcc30a64fc49728c4875548c39bf12b9c7e574b6988756d21ab1d6cb342

  • SHA512

    9fedd851cc944e88a5caa8bbf7ff609569a2a4e17f2fc7142ce21593b8287070ef9c1b506e9b8f83e63459d1ab84606552eddb97e5216435db6543a94be364a8

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dY36i9XFhiKjVZ:ymb3NkkiQ3mdBjFo7LAIb+FbI+TN

Malware Config

Targets

    • Target

      6e34bdcc30a64fc49728c4875548c39bf12b9c7e574b6988756d21ab1d6cb342N

    • Size

      94KB

    • MD5

      5e62e687bff8b221a7bc9ce25c44af40

    • SHA1

      782b3c99c29b1733532838e1a00c4fba6e1820da

    • SHA256

      6e34bdcc30a64fc49728c4875548c39bf12b9c7e574b6988756d21ab1d6cb342

    • SHA512

      9fedd851cc944e88a5caa8bbf7ff609569a2a4e17f2fc7142ce21593b8287070ef9c1b506e9b8f83e63459d1ab84606552eddb97e5216435db6543a94be364a8

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dY36i9XFhiKjVZ:ymb3NkkiQ3mdBjFo7LAIb+FbI+TN

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks