General

  • Target

    1d254c8c7c017df6582518cd7a4403a25bf9ec2db80a2b1ef3eb335ae850e4a4N

  • Size

    455KB

  • Sample

    241110-c9f8zsxgnl

  • MD5

    6974ff0193bce41c7643e6dfc33b6d20

  • SHA1

    3ed47148341fe11bfa39fa1430b1a4b97da3a07a

  • SHA256

    1d254c8c7c017df6582518cd7a4403a25bf9ec2db80a2b1ef3eb335ae850e4a4

  • SHA512

    779396a9549e52fade19858f2587863212403ab89188a1ae71e2b4901cf352b6ba8675377e01b3e9735cbc14e14ff7ec0185ff0c8b9ba815b3f203448d3aa0e5

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRv:q7Tc2NYHUrAwfMp3CDRv

Malware Config

Targets

    • Target

      1d254c8c7c017df6582518cd7a4403a25bf9ec2db80a2b1ef3eb335ae850e4a4N

    • Size

      455KB

    • MD5

      6974ff0193bce41c7643e6dfc33b6d20

    • SHA1

      3ed47148341fe11bfa39fa1430b1a4b97da3a07a

    • SHA256

      1d254c8c7c017df6582518cd7a4403a25bf9ec2db80a2b1ef3eb335ae850e4a4

    • SHA512

      779396a9549e52fade19858f2587863212403ab89188a1ae71e2b4901cf352b6ba8675377e01b3e9735cbc14e14ff7ec0185ff0c8b9ba815b3f203448d3aa0e5

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRv:q7Tc2NYHUrAwfMp3CDRv

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks