General

  • Target

    d6b0e233ce3bac6b649cd343eccaa71f40834ca2a3a184f826bde03394e596eeN

  • Size

    82KB

  • Sample

    241109-stl3asxbma

  • MD5

    5da6f7450d7a7c5889f4103a78511a00

  • SHA1

    1d1e0c3b90cdf80fd3315dd55f3838bfe8759cb2

  • SHA256

    d6b0e233ce3bac6b649cd343eccaa71f40834ca2a3a184f826bde03394e596ee

  • SHA512

    23a41b9a48368ff17e68ac92c6abf49cb0a2bb917f84582f3b6a65d9810a3287b1bee81dbedadcc9196170326da7750c1d6517bd5287571d1aeaba3922f9d2d9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIIpIo60L9QrrA89QT:ymb3NkkiQ3mdBjFIIp9L9QrrA8+

Malware Config

Targets

    • Target

      d6b0e233ce3bac6b649cd343eccaa71f40834ca2a3a184f826bde03394e596eeN

    • Size

      82KB

    • MD5

      5da6f7450d7a7c5889f4103a78511a00

    • SHA1

      1d1e0c3b90cdf80fd3315dd55f3838bfe8759cb2

    • SHA256

      d6b0e233ce3bac6b649cd343eccaa71f40834ca2a3a184f826bde03394e596ee

    • SHA512

      23a41b9a48368ff17e68ac92c6abf49cb0a2bb917f84582f3b6a65d9810a3287b1bee81dbedadcc9196170326da7750c1d6517bd5287571d1aeaba3922f9d2d9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIIpIo60L9QrrA89QT:ymb3NkkiQ3mdBjFIIp9L9QrrA8+

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks