General

  • Target

    4d55f97cdfcade1f0820e90e4edda5235f64199ac645212a9bf8e1ac2f4c74f2N

  • Size

    716KB

  • Sample

    241030-3erdksvmek

  • MD5

    f199d574420de1f7f816f168de8585a0

  • SHA1

    6959a23ec8b5c97acf9e282f8a4a3b7f077e876f

  • SHA256

    4d55f97cdfcade1f0820e90e4edda5235f64199ac645212a9bf8e1ac2f4c74f2

  • SHA512

    356920b4aa8db11d1f860285c01968fd43614b956e105bfc75304e495418bfd9758f5fc227c13a4a8a211e7da83810e08fc5b489d77918a825bb1209473dae39

  • SSDEEP

    12288:n3C9yMo+S0L9xRnoq7H9xqYLzKoq73lRa2dBD4:SgD4bhoqLDqYLzKoqT+

Malware Config

Targets

    • Target

      4d55f97cdfcade1f0820e90e4edda5235f64199ac645212a9bf8e1ac2f4c74f2N

    • Size

      716KB

    • MD5

      f199d574420de1f7f816f168de8585a0

    • SHA1

      6959a23ec8b5c97acf9e282f8a4a3b7f077e876f

    • SHA256

      4d55f97cdfcade1f0820e90e4edda5235f64199ac645212a9bf8e1ac2f4c74f2

    • SHA512

      356920b4aa8db11d1f860285c01968fd43614b956e105bfc75304e495418bfd9758f5fc227c13a4a8a211e7da83810e08fc5b489d77918a825bb1209473dae39

    • SSDEEP

      12288:n3C9yMo+S0L9xRnoq7H9xqYLzKoq73lRa2dBD4:SgD4bhoqLDqYLzKoqT+

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks