General

  • Target

    5ab27ab48a26a304a3b06a05bcda721376dca2c94937561be79501da364085a1

  • Size

    670KB

  • Sample

    241122-yd2eyatjdl

  • MD5

    a014bcc17ff6cb10f368566c143232f1

  • SHA1

    2ea6919a14f9c2a3d045d556df5e5ac36027d2f2

  • SHA256

    5ab27ab48a26a304a3b06a05bcda721376dca2c94937561be79501da364085a1

  • SHA512

    0faa321d40586d5d22495cbac5bc4a063058783f723f33b70722a246734c2f34d73b686391f4943d4836e5d95b82c05c0568ea409da0fc4272dc9ba817bde56b

  • SSDEEP

    12288:0QwEx7cEAFJDmGkxaNKsL18QJDkJvVdsqoKhbSO77ORmD1V5MqTQKpr6TMwl0adQ:0yxggxaNK21HkRVWYF2mBVG0QK/adn

Malware Config

Targets

    • Target

      5ab27ab48a26a304a3b06a05bcda721376dca2c94937561be79501da364085a1

    • Size

      670KB

    • MD5

      a014bcc17ff6cb10f368566c143232f1

    • SHA1

      2ea6919a14f9c2a3d045d556df5e5ac36027d2f2

    • SHA256

      5ab27ab48a26a304a3b06a05bcda721376dca2c94937561be79501da364085a1

    • SHA512

      0faa321d40586d5d22495cbac5bc4a063058783f723f33b70722a246734c2f34d73b686391f4943d4836e5d95b82c05c0568ea409da0fc4272dc9ba817bde56b

    • SSDEEP

      12288:0QwEx7cEAFJDmGkxaNKsL18QJDkJvVdsqoKhbSO77ORmD1V5MqTQKpr6TMwl0adQ:0yxggxaNK21HkRVWYF2mBVG0QK/adn

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks