General

  • Target

    f014bba1877468085c80c887c8bb993dc6e5e7faefb4e6d1003e2ff2a2b35c4fN

  • Size

    1.6MB

  • Sample

    241030-3vh25svrap

  • MD5

    f673c81c020d65d8aa760d428b9c0d00

  • SHA1

    b6250a7db3185f98974f6ef3adeb8d3efeba16a1

  • SHA256

    f014bba1877468085c80c887c8bb993dc6e5e7faefb4e6d1003e2ff2a2b35c4f

  • SHA512

    96bb631a9350c8c59eeb8e05c053902ceb8c6d35b6ae9107713fc3f27762084cd4a0e4295bb9b19555460810cb70de975af96149bfafde7b206816fa38bc8470

  • SSDEEP

    49152:XwZDQRj0eH2NVvtv8mx2N/Iy01OBST1Wsyw:RR7H2NVv0N/7ZOWnw

Malware Config

Targets

    • Target

      f014bba1877468085c80c887c8bb993dc6e5e7faefb4e6d1003e2ff2a2b35c4fN

    • Size

      1.6MB

    • MD5

      f673c81c020d65d8aa760d428b9c0d00

    • SHA1

      b6250a7db3185f98974f6ef3adeb8d3efeba16a1

    • SHA256

      f014bba1877468085c80c887c8bb993dc6e5e7faefb4e6d1003e2ff2a2b35c4f

    • SHA512

      96bb631a9350c8c59eeb8e05c053902ceb8c6d35b6ae9107713fc3f27762084cd4a0e4295bb9b19555460810cb70de975af96149bfafde7b206816fa38bc8470

    • SSDEEP

      49152:XwZDQRj0eH2NVvtv8mx2N/Iy01OBST1Wsyw:RR7H2NVv0N/7ZOWnw

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks