General

  • Target

    f6a6cabefc0f9213880fdf7b6b7c42f3cbbfafa209ce18c16737cb7790fd687b

  • Size

    60KB

  • Sample

    241110-e4zjgsyqf1

  • MD5

    6fece8a99a1e6eb590437cca7e4b81e9

  • SHA1

    6c9a4f0d616e52b225a540cff7a10997ae7786a2

  • SHA256

    f6a6cabefc0f9213880fdf7b6b7c42f3cbbfafa209ce18c16737cb7790fd687b

  • SHA512

    ee81d185f76fedcd41ca1cacdee7603c7af4d48ca31295508c106e4a0386ec9ae510724cf3de3ce0173fdabe4a977f838b08a5af91f494470c629b6b544fb84e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb+8RTR:ymb3NkkiQ3mdBjFIjRTR

Malware Config

Targets

    • Target

      f6a6cabefc0f9213880fdf7b6b7c42f3cbbfafa209ce18c16737cb7790fd687b

    • Size

      60KB

    • MD5

      6fece8a99a1e6eb590437cca7e4b81e9

    • SHA1

      6c9a4f0d616e52b225a540cff7a10997ae7786a2

    • SHA256

      f6a6cabefc0f9213880fdf7b6b7c42f3cbbfafa209ce18c16737cb7790fd687b

    • SHA512

      ee81d185f76fedcd41ca1cacdee7603c7af4d48ca31295508c106e4a0386ec9ae510724cf3de3ce0173fdabe4a977f838b08a5af91f494470c629b6b544fb84e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb+8RTR:ymb3NkkiQ3mdBjFIjRTR

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks