General

  • Target

    367c4f134c58c7809ec208b620f604a3cb884e33b8fe5b82aae950f53168e536N

  • Size

    343KB

  • Sample

    241018-yjyagavepc

  • MD5

    5082415ef661e85e83e37fde8ac6e570

  • SHA1

    028e1bae6569ad5c2f655ff5fc00153cc403e3cf

  • SHA256

    367c4f134c58c7809ec208b620f604a3cb884e33b8fe5b82aae950f53168e536

  • SHA512

    0688b46fd9ef72ed0fb2f24bcb9dfa22b558bd6b846565e5e6ccc5fda4a4764c833133f1931655510b73a056e8c428c2961ba91560054bc31d9d95c4a9f6c487

  • SSDEEP

    6144:Lcm4FmowdHoSEYW5fNZWB5hFfci3Add4kGYAc:R4wFHoS3WXZshJX2VGdc

Malware Config

Targets

    • Target

      367c4f134c58c7809ec208b620f604a3cb884e33b8fe5b82aae950f53168e536N

    • Size

      343KB

    • MD5

      5082415ef661e85e83e37fde8ac6e570

    • SHA1

      028e1bae6569ad5c2f655ff5fc00153cc403e3cf

    • SHA256

      367c4f134c58c7809ec208b620f604a3cb884e33b8fe5b82aae950f53168e536

    • SHA512

      0688b46fd9ef72ed0fb2f24bcb9dfa22b558bd6b846565e5e6ccc5fda4a4764c833133f1931655510b73a056e8c428c2961ba91560054bc31d9d95c4a9f6c487

    • SSDEEP

      6144:Lcm4FmowdHoSEYW5fNZWB5hFfci3Add4kGYAc:R4wFHoS3WXZshJX2VGdc

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks