General

  • Target

    48346b20adffff40e221de7741dfb225062a76409be999cca4f198ef537c43c7N

  • Size

    455KB

  • Sample

    241110-gqc5fa1erh

  • MD5

    1e654a72b60e7c4a0b086719b22e8070

  • SHA1

    d840d2482392b4af97f65684e94c28874cb88446

  • SHA256

    48346b20adffff40e221de7741dfb225062a76409be999cca4f198ef537c43c7

  • SHA512

    bfc1080b2a720aece1aba71e7408af3d6e9935e8847ac186c8849341c15f1de89c16676285c868074cbebcc4d64cc21f77c5f8a7e6f67f918ea2e0ee7b6ae4a0

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRW:q7Tc2NYHUrAwfMp3CDRW

Malware Config

Targets

    • Target

      48346b20adffff40e221de7741dfb225062a76409be999cca4f198ef537c43c7N

    • Size

      455KB

    • MD5

      1e654a72b60e7c4a0b086719b22e8070

    • SHA1

      d840d2482392b4af97f65684e94c28874cb88446

    • SHA256

      48346b20adffff40e221de7741dfb225062a76409be999cca4f198ef537c43c7

    • SHA512

      bfc1080b2a720aece1aba71e7408af3d6e9935e8847ac186c8849341c15f1de89c16676285c868074cbebcc4d64cc21f77c5f8a7e6f67f918ea2e0ee7b6ae4a0

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRW:q7Tc2NYHUrAwfMp3CDRW

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks