General

  • Target

    61e0ab442921dc7c52681e6febbaa3a3662f3f902ef77857bb605de0db1a0407N

  • Size

    76KB

  • Sample

    241110-b8r4eswhpk

  • MD5

    edd3c56790d3f8da886bda31b6ab7b30

  • SHA1

    121849f5b5cee06d191b5e72ca7aceabbe14caa2

  • SHA256

    61e0ab442921dc7c52681e6febbaa3a3662f3f902ef77857bb605de0db1a0407

  • SHA512

    436dac424968f78728020f577f22111b207dfee4c733c58654662aee796a27525ae72a876b39159e39faa3207c10ab482e2908d0da8df831b1e84a6a922a96a4

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHmP7r:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHG

Malware Config

Targets

    • Target

      61e0ab442921dc7c52681e6febbaa3a3662f3f902ef77857bb605de0db1a0407N

    • Size

      76KB

    • MD5

      edd3c56790d3f8da886bda31b6ab7b30

    • SHA1

      121849f5b5cee06d191b5e72ca7aceabbe14caa2

    • SHA256

      61e0ab442921dc7c52681e6febbaa3a3662f3f902ef77857bb605de0db1a0407

    • SHA512

      436dac424968f78728020f577f22111b207dfee4c733c58654662aee796a27525ae72a876b39159e39faa3207c10ab482e2908d0da8df831b1e84a6a922a96a4

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHmP7r:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHG

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks