General

  • Target

    1ceb9bcdc0568da1211dbfd9f0d0f8b0b40a95b736c0a992abdd221090fdc4daN

  • Size

    60KB

  • Sample

    241109-tljsmsxgkl

  • MD5

    a5bbe587416a96f74828aa9dd9225640

  • SHA1

    9cad3f17873b29b6b3bca7e01a9535d27da75745

  • SHA256

    1ceb9bcdc0568da1211dbfd9f0d0f8b0b40a95b736c0a992abdd221090fdc4da

  • SHA512

    903d265d4242349041f6c0e9c9d842dee2d8ae73c2ee4ad8ba26d7478fb4b891932fb220c14d78e36d24350b471baef781e21febe81caab85d69d70748001701

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFgjG:ymb3NkkiQ3mdBjFIF2G

Malware Config

Targets

    • Target

      1ceb9bcdc0568da1211dbfd9f0d0f8b0b40a95b736c0a992abdd221090fdc4daN

    • Size

      60KB

    • MD5

      a5bbe587416a96f74828aa9dd9225640

    • SHA1

      9cad3f17873b29b6b3bca7e01a9535d27da75745

    • SHA256

      1ceb9bcdc0568da1211dbfd9f0d0f8b0b40a95b736c0a992abdd221090fdc4da

    • SHA512

      903d265d4242349041f6c0e9c9d842dee2d8ae73c2ee4ad8ba26d7478fb4b891932fb220c14d78e36d24350b471baef781e21febe81caab85d69d70748001701

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFgjG:ymb3NkkiQ3mdBjFIF2G

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks