General

  • Target

    9d78d59db9342b0f142033a3d920c835572c7e9ffa3017605b59c04c517b35db

  • Size

    453KB

  • Sample

    241223-3xy65svras

  • MD5

    41143ecafdf68bfd1c9b4234a810463d

  • SHA1

    cf578c330ef4d5761f3d008b0fbd2bcc2ddf0693

  • SHA256

    9d78d59db9342b0f142033a3d920c835572c7e9ffa3017605b59c04c517b35db

  • SHA512

    0a64c9b6938acae117e2310ae50987cd886eb1180d6451e1ef40a87a5b37270f9c8495376cb61a80b58efe3756af426f9e526afeb3ee98227d76b4d82b021eef

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbep:q7Tc2NYHUrAwfMp3CDp

Malware Config

Targets

    • Target

      9d78d59db9342b0f142033a3d920c835572c7e9ffa3017605b59c04c517b35db

    • Size

      453KB

    • MD5

      41143ecafdf68bfd1c9b4234a810463d

    • SHA1

      cf578c330ef4d5761f3d008b0fbd2bcc2ddf0693

    • SHA256

      9d78d59db9342b0f142033a3d920c835572c7e9ffa3017605b59c04c517b35db

    • SHA512

      0a64c9b6938acae117e2310ae50987cd886eb1180d6451e1ef40a87a5b37270f9c8495376cb61a80b58efe3756af426f9e526afeb3ee98227d76b4d82b021eef

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbep:q7Tc2NYHUrAwfMp3CDp

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks