General

  • Target

    99db03a6dccb184535daf9503943227fda5f900bfb55ab63f15ffbd7e2adbe46

  • Size

    333KB

  • Sample

    241103-cbebqsvjhj

  • MD5

    815944f18efbebbe12dc1231a4801c25

  • SHA1

    50515ac130b93f54bc1beafb13bc89d807853209

  • SHA256

    99db03a6dccb184535daf9503943227fda5f900bfb55ab63f15ffbd7e2adbe46

  • SHA512

    ed4a449c477630da6089d9c3646a08752bcd6a20115035a094296dd58b53f5e299813002d36ac00b821f2994d6e6750e53f6801824b32e5ae20374711b7470b3

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeA:R4wFHoSHYHUrAwfMp3CDA

Malware Config

Targets

    • Target

      99db03a6dccb184535daf9503943227fda5f900bfb55ab63f15ffbd7e2adbe46

    • Size

      333KB

    • MD5

      815944f18efbebbe12dc1231a4801c25

    • SHA1

      50515ac130b93f54bc1beafb13bc89d807853209

    • SHA256

      99db03a6dccb184535daf9503943227fda5f900bfb55ab63f15ffbd7e2adbe46

    • SHA512

      ed4a449c477630da6089d9c3646a08752bcd6a20115035a094296dd58b53f5e299813002d36ac00b821f2994d6e6750e53f6801824b32e5ae20374711b7470b3

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeA:R4wFHoSHYHUrAwfMp3CDA

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks