General

  • Target

    2866c46e6502f7800c661781cdff8eeedd1fc91b465bec622a224802942da5f6N

  • Size

    476KB

  • Sample

    241102-zptd5svfqh

  • MD5

    d4a6306d6344ca67df7ead777ae24af0

  • SHA1

    60b90c759857fa0d4602cceaf28895df05c11f64

  • SHA256

    2866c46e6502f7800c661781cdff8eeedd1fc91b465bec622a224802942da5f6

  • SHA512

    2cef7453947ee8020231eb6cfa9d8d285fda7a14d7bbebab0affa44664edf75e31b79e37927748bfc777ba34da25c3637aad4524127a7c32e6e30ce406bfe847

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSiAJT:q7Tc2NYHUrAwqzcCJT

Malware Config

Targets

    • Target

      2866c46e6502f7800c661781cdff8eeedd1fc91b465bec622a224802942da5f6N

    • Size

      476KB

    • MD5

      d4a6306d6344ca67df7ead777ae24af0

    • SHA1

      60b90c759857fa0d4602cceaf28895df05c11f64

    • SHA256

      2866c46e6502f7800c661781cdff8eeedd1fc91b465bec622a224802942da5f6

    • SHA512

      2cef7453947ee8020231eb6cfa9d8d285fda7a14d7bbebab0affa44664edf75e31b79e37927748bfc777ba34da25c3637aad4524127a7c32e6e30ce406bfe847

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSiAJT:q7Tc2NYHUrAwqzcCJT

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks