General

  • Target

    d29710c687f8c53618d36d8560fa995a4a5a40460724fddd60c5fc18a784c33cN

  • Size

    454KB

  • Sample

    241110-cn43xszpbq

  • MD5

    b0e3c078bcaeed4c4cde872cf3f62260

  • SHA1

    c5dc2a587ac756bb3c97628ecebb0ddaaa8ebe66

  • SHA256

    d29710c687f8c53618d36d8560fa995a4a5a40460724fddd60c5fc18a784c33c

  • SHA512

    6fdf2a7084b54ca79145e42168a1874913270a454ed49e996ef6cd2d21bbd3e2d74b97aabd926d77844936b599166f9561bb6485bec91b26beebfbc22f6a54e1

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeT:q7Tc2NYHUrAwfMp3CDT

Malware Config

Targets

    • Target

      d29710c687f8c53618d36d8560fa995a4a5a40460724fddd60c5fc18a784c33cN

    • Size

      454KB

    • MD5

      b0e3c078bcaeed4c4cde872cf3f62260

    • SHA1

      c5dc2a587ac756bb3c97628ecebb0ddaaa8ebe66

    • SHA256

      d29710c687f8c53618d36d8560fa995a4a5a40460724fddd60c5fc18a784c33c

    • SHA512

      6fdf2a7084b54ca79145e42168a1874913270a454ed49e996ef6cd2d21bbd3e2d74b97aabd926d77844936b599166f9561bb6485bec91b26beebfbc22f6a54e1

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeT:q7Tc2NYHUrAwfMp3CDT

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks