General

  • Target

    c7d67aae121c0b77235edf46b2c476f990ef258a99c5e10ce908d4e4eb65c491

  • Size

    454KB

  • Sample

    241223-dglhnsvlcv

  • MD5

    73eef3b57f280f6b61d189312e466169

  • SHA1

    4f987f4a6cdf32c3bca3b21a495c693cffe7440f

  • SHA256

    c7d67aae121c0b77235edf46b2c476f990ef258a99c5e10ce908d4e4eb65c491

  • SHA512

    32ab99fb682ec4e8d8af6021f83699702b1d312163fe5ff828e9176eaaaa61ac6bfed5e2dbb04081b2549a3ba9a38b55b140c2f4c77482c8a021275ad7f24ee9

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe+:q7Tc2NYHUrAwfMp3CD+

Malware Config

Targets

    • Target

      c7d67aae121c0b77235edf46b2c476f990ef258a99c5e10ce908d4e4eb65c491

    • Size

      454KB

    • MD5

      73eef3b57f280f6b61d189312e466169

    • SHA1

      4f987f4a6cdf32c3bca3b21a495c693cffe7440f

    • SHA256

      c7d67aae121c0b77235edf46b2c476f990ef258a99c5e10ce908d4e4eb65c491

    • SHA512

      32ab99fb682ec4e8d8af6021f83699702b1d312163fe5ff828e9176eaaaa61ac6bfed5e2dbb04081b2549a3ba9a38b55b140c2f4c77482c8a021275ad7f24ee9

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe+:q7Tc2NYHUrAwfMp3CD+

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks