General

  • Target

    74bf845a12177b4ca96e895564966d6b4e621b4d5d5e790455086239c1bc3fdd

  • Size

    2.2MB

  • Sample

    241124-kgbf2askfw

  • MD5

    1ec1796354271d456acfc1b47487723e

  • SHA1

    badb8b88543f5b60a66db7ff1cbbb3ee96676bf0

  • SHA256

    74bf845a12177b4ca96e895564966d6b4e621b4d5d5e790455086239c1bc3fdd

  • SHA512

    40e646ab35d5a264d92fc29fbf2ba11ecb7035d9d37d7150f4589a746a72afc406f10c1646cdea35ec28746115f3483cfa7b6e2ffc3e9c13fef1b2306249fc9b

  • SSDEEP

    49152:3xF03dbKBDtWy+m5sJBV1Ls2ZBGaMwaQ8SiHfCUhGsRm+4Pv:hm31KBBWy94GHXqUh/Rm+cv

Malware Config

Targets

    • Target

      74bf845a12177b4ca96e895564966d6b4e621b4d5d5e790455086239c1bc3fdd

    • Size

      2.2MB

    • MD5

      1ec1796354271d456acfc1b47487723e

    • SHA1

      badb8b88543f5b60a66db7ff1cbbb3ee96676bf0

    • SHA256

      74bf845a12177b4ca96e895564966d6b4e621b4d5d5e790455086239c1bc3fdd

    • SHA512

      40e646ab35d5a264d92fc29fbf2ba11ecb7035d9d37d7150f4589a746a72afc406f10c1646cdea35ec28746115f3483cfa7b6e2ffc3e9c13fef1b2306249fc9b

    • SSDEEP

      49152:3xF03dbKBDtWy+m5sJBV1Ls2ZBGaMwaQ8SiHfCUhGsRm+4Pv:hm31KBBWy94GHXqUh/Rm+cv

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks