General

  • Target

    618b0677149604f8029e8489db5c680f459e7f150c724652ec8cbfe73b7b38dd

  • Size

    88KB

  • Sample

    241031-adthbsvamc

  • MD5

    e6c2120a5267e7f106f9e1716031622b

  • SHA1

    eef64e3a36ec9c8e2b5203c304645bb8b29a9610

  • SHA256

    618b0677149604f8029e8489db5c680f459e7f150c724652ec8cbfe73b7b38dd

  • SHA512

    53c9366af1003db7c99f8a50e373fda94d86db8046c353437af57dd27dbc6f5a30b1cfd33414db8c011d40dde42491f6f3d6e4792572b5081387c0ee90b5eb19

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJ4EUQnR:ymb3NkkiQ3mdBjFIWeFGyAsJ4a

Malware Config

Targets

    • Target

      618b0677149604f8029e8489db5c680f459e7f150c724652ec8cbfe73b7b38dd

    • Size

      88KB

    • MD5

      e6c2120a5267e7f106f9e1716031622b

    • SHA1

      eef64e3a36ec9c8e2b5203c304645bb8b29a9610

    • SHA256

      618b0677149604f8029e8489db5c680f459e7f150c724652ec8cbfe73b7b38dd

    • SHA512

      53c9366af1003db7c99f8a50e373fda94d86db8046c353437af57dd27dbc6f5a30b1cfd33414db8c011d40dde42491f6f3d6e4792572b5081387c0ee90b5eb19

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJ4EUQnR:ymb3NkkiQ3mdBjFIWeFGyAsJ4a

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks