General

  • Target

    e4446a1bc627f66f0fee0ba8791068c02ce6a4f190f1b8cacbbc7caba5d77dd2N

  • Size

    190KB

  • Sample

    241102-znppkavhjr

  • MD5

    9bff23fe53e0279c8a3a8b0959342330

  • SHA1

    2f2f2c0aec732460264fb671afcba714f85865c5

  • SHA256

    e4446a1bc627f66f0fee0ba8791068c02ce6a4f190f1b8cacbbc7caba5d77dd2

  • SHA512

    5c4789d499c9cdf522841efc2d2715a30ad047b86e7bc857eed06427e0db2844b67b5e43233f1e486e7019d2f44924e53cc67b814cc8fd264296f22502b88ca0

  • SSDEEP

    3072:3hOmTsF93UYfwC6GIoutw8YcvrqrE66kropO6BWlPFH4tw1D43eMwR:3cm4FmowdHoSzhraHcpOFltH4twl43vg

Malware Config

Targets

    • Target

      e4446a1bc627f66f0fee0ba8791068c02ce6a4f190f1b8cacbbc7caba5d77dd2N

    • Size

      190KB

    • MD5

      9bff23fe53e0279c8a3a8b0959342330

    • SHA1

      2f2f2c0aec732460264fb671afcba714f85865c5

    • SHA256

      e4446a1bc627f66f0fee0ba8791068c02ce6a4f190f1b8cacbbc7caba5d77dd2

    • SHA512

      5c4789d499c9cdf522841efc2d2715a30ad047b86e7bc857eed06427e0db2844b67b5e43233f1e486e7019d2f44924e53cc67b814cc8fd264296f22502b88ca0

    • SSDEEP

      3072:3hOmTsF93UYfwC6GIoutw8YcvrqrE66kropO6BWlPFH4tw1D43eMwR:3cm4FmowdHoSzhraHcpOFltH4twl43vg

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks