General

  • Target

    9f810998df6102e7d45fbac65130610cded309b6566c82dbff3508e8268c33f7

  • Size

    454KB

  • Sample

    241223-b2k2jatndk

  • MD5

    7da8d92eb3239e2873cf55d9f78f7ddf

  • SHA1

    b5c1e180310c363376c267f6a43782a692b5b605

  • SHA256

    9f810998df6102e7d45fbac65130610cded309b6566c82dbff3508e8268c33f7

  • SHA512

    6e7a6290916e0cace2e773c3ae5209117ef4bacc7cf9eb12a33ef4ae895af297fbf97df131e4caa707ddc4c17eafe3e4bcbfe4f5806f1c2a6562a02172d5e19f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbet7:q7Tc2NYHUrAwfMp3CDt7

Malware Config

Targets

    • Target

      9f810998df6102e7d45fbac65130610cded309b6566c82dbff3508e8268c33f7

    • Size

      454KB

    • MD5

      7da8d92eb3239e2873cf55d9f78f7ddf

    • SHA1

      b5c1e180310c363376c267f6a43782a692b5b605

    • SHA256

      9f810998df6102e7d45fbac65130610cded309b6566c82dbff3508e8268c33f7

    • SHA512

      6e7a6290916e0cace2e773c3ae5209117ef4bacc7cf9eb12a33ef4ae895af297fbf97df131e4caa707ddc4c17eafe3e4bcbfe4f5806f1c2a6562a02172d5e19f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbet7:q7Tc2NYHUrAwfMp3CDt7

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks