General

  • Target

    19d9d814aa19fd5afe6eb828dfbec1e87fc7bacea0428178b1d0485e278e9408N

  • Size

    80KB

  • Sample

    241030-3czl6svmap

  • MD5

    fae884d54b6c38c0d57dc88865341d30

  • SHA1

    683898c19fc504d2ab4a366e0e4d98bac3294ef1

  • SHA256

    19d9d814aa19fd5afe6eb828dfbec1e87fc7bacea0428178b1d0485e278e9408

  • SHA512

    f8025ae2742d306932f214cece809586dd2d9c4c0cbad9d3eb399ffc7d9b567cec510965c8bf8fd3ad5045da0b885e301a358fd2fea853dd51a603068ed850cb

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJX:ymb3NkkiQ3mdBjFIWeFGyAsJX

Malware Config

Targets

    • Target

      19d9d814aa19fd5afe6eb828dfbec1e87fc7bacea0428178b1d0485e278e9408N

    • Size

      80KB

    • MD5

      fae884d54b6c38c0d57dc88865341d30

    • SHA1

      683898c19fc504d2ab4a366e0e4d98bac3294ef1

    • SHA256

      19d9d814aa19fd5afe6eb828dfbec1e87fc7bacea0428178b1d0485e278e9408

    • SHA512

      f8025ae2742d306932f214cece809586dd2d9c4c0cbad9d3eb399ffc7d9b567cec510965c8bf8fd3ad5045da0b885e301a358fd2fea853dd51a603068ed850cb

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJX:ymb3NkkiQ3mdBjFIWeFGyAsJX

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks