General

  • Target

    63dd62c2ce089681b2d810e600d503f6836ab54b2929f6c2566044a061a99cadN

  • Size

    90KB

  • Sample

    241110-fs5f2atkbn

  • MD5

    7f1dd20fea4c255921857e378d147300

  • SHA1

    554753ad0b2eb0c9323235e1f632f70be4f3c542

  • SHA256

    63dd62c2ce089681b2d810e600d503f6836ab54b2929f6c2566044a061a99cad

  • SHA512

    492c2cc9a8e1814fe61784dbc69fcaec4946c842874224e9ddeabe0c183952241d2dab951332e1dfa9434ee8608da667e7f8d5cba06bd367e631a4138fcb7a29

  • SSDEEP

    1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8yaVskCzYBbKd+XsWgADUOj2YUW+S436C3:9hOmTsF93UYfwC6GIoutyaVszyKd+XYJ

Malware Config

Targets

    • Target

      63dd62c2ce089681b2d810e600d503f6836ab54b2929f6c2566044a061a99cadN

    • Size

      90KB

    • MD5

      7f1dd20fea4c255921857e378d147300

    • SHA1

      554753ad0b2eb0c9323235e1f632f70be4f3c542

    • SHA256

      63dd62c2ce089681b2d810e600d503f6836ab54b2929f6c2566044a061a99cad

    • SHA512

      492c2cc9a8e1814fe61784dbc69fcaec4946c842874224e9ddeabe0c183952241d2dab951332e1dfa9434ee8608da667e7f8d5cba06bd367e631a4138fcb7a29

    • SSDEEP

      1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8yaVskCzYBbKd+XsWgADUOj2YUW+S436C3:9hOmTsF93UYfwC6GIoutyaVszyKd+XYJ

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks