General

  • Target

    6b2629190ebcdff38f2987131cb63209192271881a5e08c4e1a7ca48a951d3ff

  • Size

    12.1MB

  • Sample

    241018-y22qlsyakq

  • MD5

    e9b7c03bfec3b32e34104c9b0cefab54

  • SHA1

    c10325c5ef3a114201babaccff6d2788ae8d5ade

  • SHA256

    6b2629190ebcdff38f2987131cb63209192271881a5e08c4e1a7ca48a951d3ff

  • SHA512

    ea310613136cd09ef8ba516f20afc98e6511b5be5112f59e6c4f1a4dd172ba90c6374425bb43448ca409cf150e5865ef52619b21fa2506fcab99ab4894158838

  • SSDEEP

    196608:wJV4VrkilC9WefqlfIRM3LhKC7DHhN8bhCgmsrpW9kElNmj9G/eK:w5ilC9DfqlfIg77NGbprAvmj9Gm

Malware Config

Targets

    • Target

      6b2629190ebcdff38f2987131cb63209192271881a5e08c4e1a7ca48a951d3ff

    • Size

      12.1MB

    • MD5

      e9b7c03bfec3b32e34104c9b0cefab54

    • SHA1

      c10325c5ef3a114201babaccff6d2788ae8d5ade

    • SHA256

      6b2629190ebcdff38f2987131cb63209192271881a5e08c4e1a7ca48a951d3ff

    • SHA512

      ea310613136cd09ef8ba516f20afc98e6511b5be5112f59e6c4f1a4dd172ba90c6374425bb43448ca409cf150e5865ef52619b21fa2506fcab99ab4894158838

    • SSDEEP

      196608:wJV4VrkilC9WefqlfIRM3LhKC7DHhN8bhCgmsrpW9kElNmj9G/eK:w5ilC9DfqlfIg77NGbprAvmj9Gm

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks