General

  • Target

    2540835520d4d3024cbc3074a61ab8c91b5314b207771a5e75d3230c7cc72956

  • Size

    454KB

  • Sample

    241222-zktt4sylb1

  • MD5

    ddc2edbcfadbf0fba0dfef67551b3dcf

  • SHA1

    2f1f1c0037361eeeb20de50ec4fd809166a25e9d

  • SHA256

    2540835520d4d3024cbc3074a61ab8c91b5314b207771a5e75d3230c7cc72956

  • SHA512

    dd0d730ede188ae4222dc43bb03ccd9da40d91e98c143416d411b16b598b65913ad598ae2a415921306e1efec0b1967022546f1b2ce773d3872d9c7e1b0f77a1

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbey:q7Tc2NYHUrAwfMp3CDy

Malware Config

Targets

    • Target

      2540835520d4d3024cbc3074a61ab8c91b5314b207771a5e75d3230c7cc72956

    • Size

      454KB

    • MD5

      ddc2edbcfadbf0fba0dfef67551b3dcf

    • SHA1

      2f1f1c0037361eeeb20de50ec4fd809166a25e9d

    • SHA256

      2540835520d4d3024cbc3074a61ab8c91b5314b207771a5e75d3230c7cc72956

    • SHA512

      dd0d730ede188ae4222dc43bb03ccd9da40d91e98c143416d411b16b598b65913ad598ae2a415921306e1efec0b1967022546f1b2ce773d3872d9c7e1b0f77a1

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbey:q7Tc2NYHUrAwfMp3CDy

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks