General

  • Target

    61d36da44eefe162b804adff58b0aea84c4f80fbd02fbce7105eb205e200c674N

  • Size

    454KB

  • Sample

    241109-1sjvjswkhq

  • MD5

    c8cffa50ab2bdbb731c72d5eea8bdd10

  • SHA1

    6ceb287c06962d2b5dbda2f4301ed96401405efa

  • SHA256

    61d36da44eefe162b804adff58b0aea84c4f80fbd02fbce7105eb205e200c674

  • SHA512

    7756406d4fb96ab4da086bbfecfa2da92325da43abc7599da6e2dc490ac3ae2d83b3994c515ee38b6bd735548a80d616d38b30528f949f7c219051effdc5a80a

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeS:q7Tc2NYHUrAwfMp3CDS

Malware Config

Targets

    • Target

      61d36da44eefe162b804adff58b0aea84c4f80fbd02fbce7105eb205e200c674N

    • Size

      454KB

    • MD5

      c8cffa50ab2bdbb731c72d5eea8bdd10

    • SHA1

      6ceb287c06962d2b5dbda2f4301ed96401405efa

    • SHA256

      61d36da44eefe162b804adff58b0aea84c4f80fbd02fbce7105eb205e200c674

    • SHA512

      7756406d4fb96ab4da086bbfecfa2da92325da43abc7599da6e2dc490ac3ae2d83b3994c515ee38b6bd735548a80d616d38b30528f949f7c219051effdc5a80a

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeS:q7Tc2NYHUrAwfMp3CDS

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks