General

  • Target

    c37feec4debcdfb1fddfa366f125493a0e58f7d62df91e801b5b5309e87185baN

  • Size

    455KB

  • Sample

    241109-nvxg7ssqew

  • MD5

    8645b9a917f855c771dacd8ae4950c60

  • SHA1

    7829e7875675445a03c3ed32b546dfde7cbc342e

  • SHA256

    c37feec4debcdfb1fddfa366f125493a0e58f7d62df91e801b5b5309e87185ba

  • SHA512

    600234c425aeb8edb379ea9e6f225c1aec673350f4cf7953365e5147652ae8a01024df22ba961247c4339403f62fc01d3ab4a77ec361142621eb408950a7c192

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRw:q7Tc2NYHUrAwfMp3CDRw

Malware Config

Targets

    • Target

      c37feec4debcdfb1fddfa366f125493a0e58f7d62df91e801b5b5309e87185baN

    • Size

      455KB

    • MD5

      8645b9a917f855c771dacd8ae4950c60

    • SHA1

      7829e7875675445a03c3ed32b546dfde7cbc342e

    • SHA256

      c37feec4debcdfb1fddfa366f125493a0e58f7d62df91e801b5b5309e87185ba

    • SHA512

      600234c425aeb8edb379ea9e6f225c1aec673350f4cf7953365e5147652ae8a01024df22ba961247c4339403f62fc01d3ab4a77ec361142621eb408950a7c192

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRw:q7Tc2NYHUrAwfMp3CDRw

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks