General

  • Target

    73bfe92abe4a2fa348c9ec1d8ef3dbafcf0004e0453e8486bdd2842c8426aba0

  • Size

    453KB

  • Sample

    241102-31hzbsyhrn

  • MD5

    e39ce69a57bb77192fcd6b859e079258

  • SHA1

    bce836cc3e802ed8f633e57316e145a700be682a

  • SHA256

    73bfe92abe4a2fa348c9ec1d8ef3dbafcf0004e0453e8486bdd2842c8426aba0

  • SHA512

    d3a3f319f071e0fa650e9da148e5dd48322fa09245ca96c91d60c717c37f60f56fb7e44020bb4a92357e11c1a0d7090256ef4b71af4403196328521c4c9ea627

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeZ:q7Tc2NYHUrAwfMp3CDZ

Malware Config

Targets

    • Target

      73bfe92abe4a2fa348c9ec1d8ef3dbafcf0004e0453e8486bdd2842c8426aba0

    • Size

      453KB

    • MD5

      e39ce69a57bb77192fcd6b859e079258

    • SHA1

      bce836cc3e802ed8f633e57316e145a700be682a

    • SHA256

      73bfe92abe4a2fa348c9ec1d8ef3dbafcf0004e0453e8486bdd2842c8426aba0

    • SHA512

      d3a3f319f071e0fa650e9da148e5dd48322fa09245ca96c91d60c717c37f60f56fb7e44020bb4a92357e11c1a0d7090256ef4b71af4403196328521c4c9ea627

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeZ:q7Tc2NYHUrAwfMp3CDZ

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks