General

  • Target

    cb2dd70a81e718226a144de6423f3debd491e853053be5f68dbc613c254026aaN

  • Size

    455KB

  • Sample

    241110-dxnyqsycrq

  • MD5

    e26f6ef36ca7a175937711cc31bd83d0

  • SHA1

    8981f29192283063fd4f6d10924059d71e19cb9d

  • SHA256

    cb2dd70a81e718226a144de6423f3debd491e853053be5f68dbc613c254026aa

  • SHA512

    576c7e5f5255492dcbb7b0e98d843878f7063b23f79a23bb5e24a88abe09c616d92b579c1be0b1636e97e6313d70a62d9d68c72a2504555751c5de9c11e6e879

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRZ:q7Tc2NYHUrAwfMp3CDRZ

Malware Config

Targets

    • Target

      cb2dd70a81e718226a144de6423f3debd491e853053be5f68dbc613c254026aaN

    • Size

      455KB

    • MD5

      e26f6ef36ca7a175937711cc31bd83d0

    • SHA1

      8981f29192283063fd4f6d10924059d71e19cb9d

    • SHA256

      cb2dd70a81e718226a144de6423f3debd491e853053be5f68dbc613c254026aa

    • SHA512

      576c7e5f5255492dcbb7b0e98d843878f7063b23f79a23bb5e24a88abe09c616d92b579c1be0b1636e97e6313d70a62d9d68c72a2504555751c5de9c11e6e879

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRZ:q7Tc2NYHUrAwfMp3CDRZ

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks