General

  • Target

    67af48d4aa59699d4cf4c4e7a016199f8e299a0387df60938639cc49771cc263N

  • Size

    85KB

  • Sample

    241110-dq1zqa1nhn

  • MD5

    4069918097309ae4bf6d248cff5b5c20

  • SHA1

    969212be6d2a7156a540572e2cabda14510ffc1d

  • SHA256

    67af48d4aa59699d4cf4c4e7a016199f8e299a0387df60938639cc49771cc263

  • SHA512

    9fc3e3c403b3c3e528782d95cf70902323bb3bb6fd4fafd171d1eb5ffd0c9985776781398034970444464913dbfbb2a06172feff78b41ff5735cb706af24f6eb

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJ4EU2v:ymb3NkkiQ3mdBjFIWeFGyAsJ4S

Malware Config

Targets

    • Target

      67af48d4aa59699d4cf4c4e7a016199f8e299a0387df60938639cc49771cc263N

    • Size

      85KB

    • MD5

      4069918097309ae4bf6d248cff5b5c20

    • SHA1

      969212be6d2a7156a540572e2cabda14510ffc1d

    • SHA256

      67af48d4aa59699d4cf4c4e7a016199f8e299a0387df60938639cc49771cc263

    • SHA512

      9fc3e3c403b3c3e528782d95cf70902323bb3bb6fd4fafd171d1eb5ffd0c9985776781398034970444464913dbfbb2a06172feff78b41ff5735cb706af24f6eb

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJ4EU2v:ymb3NkkiQ3mdBjFIWeFGyAsJ4S

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks