General

  • Target

    4be3b99bca7d0e43dde28c2db9ff091d80f7f7fc7cccc57e96730313654e10bbN

  • Size

    453KB

  • Sample

    241102-zpekzsxrfj

  • MD5

    5b5cba072d06f941b153b9885e0f1a40

  • SHA1

    edc948f8b6075ee7284096c2856bdde78027eca9

  • SHA256

    4be3b99bca7d0e43dde28c2db9ff091d80f7f7fc7cccc57e96730313654e10bb

  • SHA512

    87a7d25ed79763329ae063668c3e4f677b4cf54b85bee07d77ac10ff4316d8575c39cabcab443eccf25e4e1189b87fbb89cd30c27c9bccca22343e74c14257d1

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeJ:q7Tc2NYHUrAwfMp3CDJ

Malware Config

Targets

    • Target

      4be3b99bca7d0e43dde28c2db9ff091d80f7f7fc7cccc57e96730313654e10bbN

    • Size

      453KB

    • MD5

      5b5cba072d06f941b153b9885e0f1a40

    • SHA1

      edc948f8b6075ee7284096c2856bdde78027eca9

    • SHA256

      4be3b99bca7d0e43dde28c2db9ff091d80f7f7fc7cccc57e96730313654e10bb

    • SHA512

      87a7d25ed79763329ae063668c3e4f677b4cf54b85bee07d77ac10ff4316d8575c39cabcab443eccf25e4e1189b87fbb89cd30c27c9bccca22343e74c14257d1

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeJ:q7Tc2NYHUrAwfMp3CDJ

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks