General

  • Target

    e045a11fffa817dcc75edf0d8d0a9ec89cff7b8f91a77eeef3a61d1cf1995d26N

  • Size

    455KB

  • Sample

    241110-dkcd6s1mhk

  • MD5

    0c29d37828acca79e5c7554ec1decef0

  • SHA1

    6799fbf4781544a8ac660e8124e1d8c337bb2f22

  • SHA256

    e045a11fffa817dcc75edf0d8d0a9ec89cff7b8f91a77eeef3a61d1cf1995d26

  • SHA512

    d5935d02433e8658b710868cc24f3e21ca7d1037889a5bc0bb8b3ded04fa37e0ef911715589a29a110164592e2f1d5ca9f91462de58eff3b1a2d83247b45e416

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRW:q7Tc2NYHUrAwfMp3CDRW

Malware Config

Targets

    • Target

      e045a11fffa817dcc75edf0d8d0a9ec89cff7b8f91a77eeef3a61d1cf1995d26N

    • Size

      455KB

    • MD5

      0c29d37828acca79e5c7554ec1decef0

    • SHA1

      6799fbf4781544a8ac660e8124e1d8c337bb2f22

    • SHA256

      e045a11fffa817dcc75edf0d8d0a9ec89cff7b8f91a77eeef3a61d1cf1995d26

    • SHA512

      d5935d02433e8658b710868cc24f3e21ca7d1037889a5bc0bb8b3ded04fa37e0ef911715589a29a110164592e2f1d5ca9f91462de58eff3b1a2d83247b45e416

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRW:q7Tc2NYHUrAwfMp3CDRW

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks