General

  • Target

    d1f4aaf8a6057cde9de2c099723bcdf5c1ea31f20641f561c1bf47c5487fffa5

  • Size

    332KB

  • Sample

    241110-dkjhgsxpa1

  • MD5

    d06d613062292a5ee8eb447cccdc6a99

  • SHA1

    ee16587d5ca48c93e2463a4d2d44424c69215060

  • SHA256

    d1f4aaf8a6057cde9de2c099723bcdf5c1ea31f20641f561c1bf47c5487fffa5

  • SHA512

    e7c4155fc7eedb3737094b8c769b914ae2bdc865d8fd9fd98bc4def66053bc50ed8c868c5fe6ba863e1728086de40292f88cce9630a21f56be62f9f205e53d3e

  • SSDEEP

    6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhl:F7Tc8JdSjylh2b77BoTMA9gX59sTsuT1

Malware Config

Targets

    • Target

      d1f4aaf8a6057cde9de2c099723bcdf5c1ea31f20641f561c1bf47c5487fffa5

    • Size

      332KB

    • MD5

      d06d613062292a5ee8eb447cccdc6a99

    • SHA1

      ee16587d5ca48c93e2463a4d2d44424c69215060

    • SHA256

      d1f4aaf8a6057cde9de2c099723bcdf5c1ea31f20641f561c1bf47c5487fffa5

    • SHA512

      e7c4155fc7eedb3737094b8c769b914ae2bdc865d8fd9fd98bc4def66053bc50ed8c868c5fe6ba863e1728086de40292f88cce9630a21f56be62f9f205e53d3e

    • SSDEEP

      6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhl:F7Tc8JdSjylh2b77BoTMA9gX59sTsuT1

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks