General

  • Target

    665e2c1ba6da46930f6751a2c984dac5a83082e54efe5bd9f24fae53d082da48N

  • Size

    75KB

  • Sample

    241101-la4dxazclm

  • MD5

    b7f69c53be6094db14af1ff834a1ae70

  • SHA1

    e1ca6b42d31e6cbba701b12cc48ba599ce86246c

  • SHA256

    665e2c1ba6da46930f6751a2c984dac5a83082e54efe5bd9f24fae53d082da48

  • SHA512

    f2287ca08dcc70f7396a5665b09bd1a0ac78e5608a01d1ceb0ff349c4386e7f5f17f5b78ca534321041bf9016092f0283192a67054541658e0c61b70ea17aade

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHmPi:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHD

Malware Config

Targets

    • Target

      665e2c1ba6da46930f6751a2c984dac5a83082e54efe5bd9f24fae53d082da48N

    • Size

      75KB

    • MD5

      b7f69c53be6094db14af1ff834a1ae70

    • SHA1

      e1ca6b42d31e6cbba701b12cc48ba599ce86246c

    • SHA256

      665e2c1ba6da46930f6751a2c984dac5a83082e54efe5bd9f24fae53d082da48

    • SHA512

      f2287ca08dcc70f7396a5665b09bd1a0ac78e5608a01d1ceb0ff349c4386e7f5f17f5b78ca534321041bf9016092f0283192a67054541658e0c61b70ea17aade

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHmPi:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHD

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks