General

  • Target

    65e89a11dbee01b830206656f21e42473bd15e41849d96fea96e596c078f8f7fN

  • Size

    94KB

  • Sample

    241018-zr4b5axhkg

  • MD5

    68e4fca30cbb968e24018175bee16720

  • SHA1

    b8ab3f812849d7278594d08ba6806d5ff5a14c5f

  • SHA256

    65e89a11dbee01b830206656f21e42473bd15e41849d96fea96e596c078f8f7f

  • SHA512

    1620422161901a7f5a121669c4d939d13c715c52bf255b2fafc637697528a3d8043e5abb074f5659c66327c6919b70f65f4becb6f267c6f731559122793388f8

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxS1rj/2CX:ymb3NkkiQ3mdBjFo73PYP1lri3K8GwMM

Malware Config

Targets

    • Target

      65e89a11dbee01b830206656f21e42473bd15e41849d96fea96e596c078f8f7fN

    • Size

      94KB

    • MD5

      68e4fca30cbb968e24018175bee16720

    • SHA1

      b8ab3f812849d7278594d08ba6806d5ff5a14c5f

    • SHA256

      65e89a11dbee01b830206656f21e42473bd15e41849d96fea96e596c078f8f7f

    • SHA512

      1620422161901a7f5a121669c4d939d13c715c52bf255b2fafc637697528a3d8043e5abb074f5659c66327c6919b70f65f4becb6f267c6f731559122793388f8

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxS1rj/2CX:ymb3NkkiQ3mdBjFo73PYP1lri3K8GwMM

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks