General

  • Target

    d704c4b012098ee6f32d9fb518c6e4428da317ebe5cd80b70b1ffa527cadbccc

  • Size

    453KB

  • Sample

    241223-d5kw2svqhj

  • MD5

    ed8c8d463ad043014f34b78cd8e79bce

  • SHA1

    868ac639d881f675b0a7dbbf235e607924d80ed0

  • SHA256

    d704c4b012098ee6f32d9fb518c6e4428da317ebe5cd80b70b1ffa527cadbccc

  • SHA512

    2b87252b074d4523b778f4db3495e1878dfed86d29e2369f7fa583e9f7a160e74eddbba81dcd874b53ceedf623c39084d149634a726250e438e99ed8c90ea99e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeY:q7Tc2NYHUrAwfMp3CDY

Malware Config

Targets

    • Target

      d704c4b012098ee6f32d9fb518c6e4428da317ebe5cd80b70b1ffa527cadbccc

    • Size

      453KB

    • MD5

      ed8c8d463ad043014f34b78cd8e79bce

    • SHA1

      868ac639d881f675b0a7dbbf235e607924d80ed0

    • SHA256

      d704c4b012098ee6f32d9fb518c6e4428da317ebe5cd80b70b1ffa527cadbccc

    • SHA512

      2b87252b074d4523b778f4db3495e1878dfed86d29e2369f7fa583e9f7a160e74eddbba81dcd874b53ceedf623c39084d149634a726250e438e99ed8c90ea99e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeY:q7Tc2NYHUrAwfMp3CDY

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks