General

  • Target

    9bcb642cc5981572c54454b153a8144c9402d28e515eab7108bfa2b815a75d56N

  • Size

    332KB

  • Sample

    241109-svjnkaxcnn

  • MD5

    e849510d53cfb0962e969627423fdcb0

  • SHA1

    19744d91819694c55ffcde063182bf2139688216

  • SHA256

    9bcb642cc5981572c54454b153a8144c9402d28e515eab7108bfa2b815a75d56

  • SHA512

    e80df6f1df9b7e514b4b5e28bf3bf8cc2f149f52b47f7c4e0955f52a0acb0a5a3a8f05eb489999059ee14e94b9e655a077f4092cf16482ae922e8f0ade146245

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeO:R4wFHoSHYHUrAwfMp3CDO

Malware Config

Targets

    • Target

      9bcb642cc5981572c54454b153a8144c9402d28e515eab7108bfa2b815a75d56N

    • Size

      332KB

    • MD5

      e849510d53cfb0962e969627423fdcb0

    • SHA1

      19744d91819694c55ffcde063182bf2139688216

    • SHA256

      9bcb642cc5981572c54454b153a8144c9402d28e515eab7108bfa2b815a75d56

    • SHA512

      e80df6f1df9b7e514b4b5e28bf3bf8cc2f149f52b47f7c4e0955f52a0acb0a5a3a8f05eb489999059ee14e94b9e655a077f4092cf16482ae922e8f0ade146245

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeO:R4wFHoSHYHUrAwfMp3CDO

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks