General

  • Target

    2a25d82384ed51448813bf2e19afb33a3a435a8a637aa4b64babc6b2e8ee13f3

  • Size

    454KB

  • Sample

    241102-znrtxsvkf1

  • MD5

    a3c2f27cda66bc6fd6b3261d91e61856

  • SHA1

    73e81e6319e047b5edd2a5e368323cb50fd453fe

  • SHA256

    2a25d82384ed51448813bf2e19afb33a3a435a8a637aa4b64babc6b2e8ee13f3

  • SHA512

    992ccb2f6ba4660bc7890c5c634a62c9462c422aa5c27e66fa59f656840ebe110360686e36f31142ac7b72514c0e15476bcb4aae622840db7cb15841e410d09f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbec:q7Tc2NYHUrAwfMp3CDc

Malware Config

Targets

    • Target

      2a25d82384ed51448813bf2e19afb33a3a435a8a637aa4b64babc6b2e8ee13f3

    • Size

      454KB

    • MD5

      a3c2f27cda66bc6fd6b3261d91e61856

    • SHA1

      73e81e6319e047b5edd2a5e368323cb50fd453fe

    • SHA256

      2a25d82384ed51448813bf2e19afb33a3a435a8a637aa4b64babc6b2e8ee13f3

    • SHA512

      992ccb2f6ba4660bc7890c5c634a62c9462c422aa5c27e66fa59f656840ebe110360686e36f31142ac7b72514c0e15476bcb4aae622840db7cb15841e410d09f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbec:q7Tc2NYHUrAwfMp3CDc

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks