General

  • Target

    d8a921b02e3ae437d87d99480a731c5f75920eaf7e08935d00e3f3b0cf229025N.exe

  • Size

    66KB

  • Sample

    241124-q7rtlasmet

  • MD5

    10ffdedd0a9260affc335d14f3c54bf0

  • SHA1

    1638b7882a6ed271b09c27adc4876741affe97a5

  • SHA256

    d8a921b02e3ae437d87d99480a731c5f75920eaf7e08935d00e3f3b0cf229025

  • SHA512

    5ce8f6a59dfe66bd487cffa477c17e7c9d3036d24f5a9bfed7d37c6e79e220cd37b21eca3952bc8f1d2b82e40c05ecf2ccc932045af668331e7a67596c223469

  • SSDEEP

    1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNlIQldqHIxemlZv:khOmTsF93UYfwC6GIoutpYcvldKIxtbv

Malware Config

Targets

    • Target

      d8a921b02e3ae437d87d99480a731c5f75920eaf7e08935d00e3f3b0cf229025N.exe

    • Size

      66KB

    • MD5

      10ffdedd0a9260affc335d14f3c54bf0

    • SHA1

      1638b7882a6ed271b09c27adc4876741affe97a5

    • SHA256

      d8a921b02e3ae437d87d99480a731c5f75920eaf7e08935d00e3f3b0cf229025

    • SHA512

      5ce8f6a59dfe66bd487cffa477c17e7c9d3036d24f5a9bfed7d37c6e79e220cd37b21eca3952bc8f1d2b82e40c05ecf2ccc932045af668331e7a67596c223469

    • SSDEEP

      1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNlIQldqHIxemlZv:khOmTsF93UYfwC6GIoutpYcvldKIxtbv

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks