General

  • Target

    874dff840b18a7be75b75f9cb07abe86bafb1661173102186ac7842bec414e85

  • Size

    93KB

  • Sample

    241220-dh59gaxnbz

  • MD5

    789612a58fd4b8deaca1dcd85daa895d

  • SHA1

    2c227d9ad452da6a3e763e2ab15908f9bf545031

  • SHA256

    874dff840b18a7be75b75f9cb07abe86bafb1661173102186ac7842bec414e85

  • SHA512

    888e6de09c4f9ea6e52829ddc20ef6a2530386820e4613cbe377217a004e6ca3ba3818a5b1aaac1ccbbb5f994eb32720e85d1c35cf3a9cb8da92bbede1951a79

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp99zx/A0UtgK:ymb3NkkiQ3mdBjFo73tvn+Yp99zDut

Malware Config

Targets

    • Target

      874dff840b18a7be75b75f9cb07abe86bafb1661173102186ac7842bec414e85

    • Size

      93KB

    • MD5

      789612a58fd4b8deaca1dcd85daa895d

    • SHA1

      2c227d9ad452da6a3e763e2ab15908f9bf545031

    • SHA256

      874dff840b18a7be75b75f9cb07abe86bafb1661173102186ac7842bec414e85

    • SHA512

      888e6de09c4f9ea6e52829ddc20ef6a2530386820e4613cbe377217a004e6ca3ba3818a5b1aaac1ccbbb5f994eb32720e85d1c35cf3a9cb8da92bbede1951a79

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp99zx/A0UtgK:ymb3NkkiQ3mdBjFo73tvn+Yp99zDut

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks