General

  • Target

    856c33a56375f7056d884f4a28770f04467b1147029722bce2fb92b071d54117

  • Size

    8.4MB

  • Sample

    241109-t5zcfa1kgj

  • MD5

    ffec7f7fac66c2289cd7bdcf797c7dc9

  • SHA1

    2fb34b1fb49e5c375b88635ad23b2482f2cf5304

  • SHA256

    856c33a56375f7056d884f4a28770f04467b1147029722bce2fb92b071d54117

  • SHA512

    437e430e61b066239f386c24d77104947e4d7472b6f5358ea141cd60e77eba9f542c5ce922937c2569fd8f864539af5dab652769290748b94cc9edd5581957a4

  • SSDEEP

    196608:oajTeKUoBVpdIjbPaEl8vH0qqLbqDW+O+PN4nEVZN:L79qbaEOjq3qK+nPYi

Malware Config

Targets

    • Target

      856c33a56375f7056d884f4a28770f04467b1147029722bce2fb92b071d54117

    • Size

      8.4MB

    • MD5

      ffec7f7fac66c2289cd7bdcf797c7dc9

    • SHA1

      2fb34b1fb49e5c375b88635ad23b2482f2cf5304

    • SHA256

      856c33a56375f7056d884f4a28770f04467b1147029722bce2fb92b071d54117

    • SHA512

      437e430e61b066239f386c24d77104947e4d7472b6f5358ea141cd60e77eba9f542c5ce922937c2569fd8f864539af5dab652769290748b94cc9edd5581957a4

    • SSDEEP

      196608:oajTeKUoBVpdIjbPaEl8vH0qqLbqDW+O+PN4nEVZN:L79qbaEOjq3qK+nPYi

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks