General

  • Target

    906f5395ae7eda534b53aa5536773a3c4e29c06058589e6316f4ae698a902a1a

  • Size

    454KB

  • Sample

    241223-3hc1csvpck

  • MD5

    f2b11c4f394ea83ecdfef520530ba332

  • SHA1

    db73e90f002b0bb57efd28c41e97518a70c33de9

  • SHA256

    906f5395ae7eda534b53aa5536773a3c4e29c06058589e6316f4ae698a902a1a

  • SHA512

    3d1e311877f9bedc34158147aee13b3be7131addc77528d4f511fad1830aa5b372cf5b3618a952859c5764c1b4dd094044017c7d4e7b7d055bf462ec6c9a7b3f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeVn:q7Tc2NYHUrAwfMp3CD1

Malware Config

Targets

    • Target

      906f5395ae7eda534b53aa5536773a3c4e29c06058589e6316f4ae698a902a1a

    • Size

      454KB

    • MD5

      f2b11c4f394ea83ecdfef520530ba332

    • SHA1

      db73e90f002b0bb57efd28c41e97518a70c33de9

    • SHA256

      906f5395ae7eda534b53aa5536773a3c4e29c06058589e6316f4ae698a902a1a

    • SHA512

      3d1e311877f9bedc34158147aee13b3be7131addc77528d4f511fad1830aa5b372cf5b3618a952859c5764c1b4dd094044017c7d4e7b7d055bf462ec6c9a7b3f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeVn:q7Tc2NYHUrAwfMp3CD1

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks