General

  • Target

    92bb4b882335da3f3e5ea0c35ac38ca02b95be5e4b36aaf41440eb7a37d5fd50N

  • Size

    78KB

  • Sample

    241018-wshv2asgmj

  • MD5

    b4aad9e9832c9777edb6794b946cdc80

  • SHA1

    04b8f1b1e2c70b55088f0bd231477ddaba65d2f7

  • SHA256

    92bb4b882335da3f3e5ea0c35ac38ca02b95be5e4b36aaf41440eb7a37d5fd50

  • SHA512

    b2ebd91dbd872fddf2037c6cffd7ab036624118fab7c8fd757a195155a6703330470f8d72c5a79d2536261eaf9c7afa26d06c062b9ab4e9242f71561935f2af3

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb7GTi3ldD56u:ymb3NkkiQ3mdBjFIWYB56u

Malware Config

Targets

    • Target

      92bb4b882335da3f3e5ea0c35ac38ca02b95be5e4b36aaf41440eb7a37d5fd50N

    • Size

      78KB

    • MD5

      b4aad9e9832c9777edb6794b946cdc80

    • SHA1

      04b8f1b1e2c70b55088f0bd231477ddaba65d2f7

    • SHA256

      92bb4b882335da3f3e5ea0c35ac38ca02b95be5e4b36aaf41440eb7a37d5fd50

    • SHA512

      b2ebd91dbd872fddf2037c6cffd7ab036624118fab7c8fd757a195155a6703330470f8d72c5a79d2536261eaf9c7afa26d06c062b9ab4e9242f71561935f2af3

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb7GTi3ldD56u:ymb3NkkiQ3mdBjFIWYB56u

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks