General

  • Target

    8d677f84c71cbf1839acb4e52cf6b61d3b507d83df7868b190be3be96f8f5e6f

  • Size

    456KB

  • Sample

    241223-3czl6svlc1

  • MD5

    80dc06011ccb2447decac408b3b2188b

  • SHA1

    333a757200d292c88a4ef7c679717d8839f5b8e0

  • SHA256

    8d677f84c71cbf1839acb4e52cf6b61d3b507d83df7868b190be3be96f8f5e6f

  • SHA512

    3b615edf9e2fdd6a24912bbdb808d1d699734cbe500fed4e664dd7de29d5d4bfafc7ae2c5ae9cd491889b09581b893c59ad9a356ae4a712724648b2bc8ac7c3d

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR1:q7Tc2NYHUrAwfMp3CDR1

Malware Config

Targets

    • Target

      8d677f84c71cbf1839acb4e52cf6b61d3b507d83df7868b190be3be96f8f5e6f

    • Size

      456KB

    • MD5

      80dc06011ccb2447decac408b3b2188b

    • SHA1

      333a757200d292c88a4ef7c679717d8839f5b8e0

    • SHA256

      8d677f84c71cbf1839acb4e52cf6b61d3b507d83df7868b190be3be96f8f5e6f

    • SHA512

      3b615edf9e2fdd6a24912bbdb808d1d699734cbe500fed4e664dd7de29d5d4bfafc7ae2c5ae9cd491889b09581b893c59ad9a356ae4a712724648b2bc8ac7c3d

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR1:q7Tc2NYHUrAwfMp3CDR1

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks