General

  • Target

    64d2fc99ffadeaef4e6a7a7c833b4de4c0002118228e17cb59a14fe5e7079d52N

  • Size

    88KB

  • Sample

    241109-yt9q9azqbz

  • MD5

    6d47d59a10b75815fb527d1f8f59b250

  • SHA1

    096f98c54014f482e2096bce43617d766267cbe2

  • SHA256

    64d2fc99ffadeaef4e6a7a7c833b4de4c0002118228e17cb59a14fe5e7079d52

  • SHA512

    c1f8b60c14660e18df6a5e6d89d355d325143d750479c8966403fb869b455be5994245a34953bde3166c85e9653fe8507bb6b429acffecabc324467bf309f5d3

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLU1gxmcK8S9/LhuQHzkyLGW0OD:ymb3NkkiQ3mdBjFoLkmW8A/hUC

Malware Config

Targets

    • Target

      64d2fc99ffadeaef4e6a7a7c833b4de4c0002118228e17cb59a14fe5e7079d52N

    • Size

      88KB

    • MD5

      6d47d59a10b75815fb527d1f8f59b250

    • SHA1

      096f98c54014f482e2096bce43617d766267cbe2

    • SHA256

      64d2fc99ffadeaef4e6a7a7c833b4de4c0002118228e17cb59a14fe5e7079d52

    • SHA512

      c1f8b60c14660e18df6a5e6d89d355d325143d750479c8966403fb869b455be5994245a34953bde3166c85e9653fe8507bb6b429acffecabc324467bf309f5d3

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLU1gxmcK8S9/LhuQHzkyLGW0OD:ymb3NkkiQ3mdBjFoLkmW8A/hUC

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks