General

  • Target

    415715eac2b6c738ccd31904015f281605ca2593ea191bfa1b954072dbbf6e46

  • Size

    59KB

  • Sample

    241018-zr9h5szdpr

  • MD5

    eb7315b0886b29d56badebd95370365e

  • SHA1

    a134dbcfe4680531b9353cbda1d8fc049de0bfc3

  • SHA256

    415715eac2b6c738ccd31904015f281605ca2593ea191bfa1b954072dbbf6e46

  • SHA512

    727c4098e9b78b044eaff9036d60f98f61d7ec8c744bf2c2b605f87483833cc21c497ff1caf0b260725c9d2e041831078b87bdb3b927cddb9e15bfdb3e4df66c

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAh:ymb3NkkiQ3mdBjFo4

Malware Config

Targets

    • Target

      415715eac2b6c738ccd31904015f281605ca2593ea191bfa1b954072dbbf6e46

    • Size

      59KB

    • MD5

      eb7315b0886b29d56badebd95370365e

    • SHA1

      a134dbcfe4680531b9353cbda1d8fc049de0bfc3

    • SHA256

      415715eac2b6c738ccd31904015f281605ca2593ea191bfa1b954072dbbf6e46

    • SHA512

      727c4098e9b78b044eaff9036d60f98f61d7ec8c744bf2c2b605f87483833cc21c497ff1caf0b260725c9d2e041831078b87bdb3b927cddb9e15bfdb3e4df66c

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAh:ymb3NkkiQ3mdBjFo4

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks