General

  • Target

    caeabcdb72c5f170f9cd2d510e5c9b7a00bd528d0505198bb5a0ca689cd23432

  • Size

    454KB

  • Sample

    241223-dmjk9svlgx

  • MD5

    d2082844fdb1d2289f641e1cebf22ffa

  • SHA1

    87b3841f8dbb98119140f2a385126e5f39663045

  • SHA256

    caeabcdb72c5f170f9cd2d510e5c9b7a00bd528d0505198bb5a0ca689cd23432

  • SHA512

    42bb7f46c5ed45cc994cc971cf0b9480b053b0a73817330576c290bfbbef452c8b6961a43f785a5c15b38e5db54c5f5c50bb8f407f2a8f9ba057362b21a6707e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbew:q7Tc2NYHUrAwfMp3CDw

Malware Config

Targets

    • Target

      caeabcdb72c5f170f9cd2d510e5c9b7a00bd528d0505198bb5a0ca689cd23432

    • Size

      454KB

    • MD5

      d2082844fdb1d2289f641e1cebf22ffa

    • SHA1

      87b3841f8dbb98119140f2a385126e5f39663045

    • SHA256

      caeabcdb72c5f170f9cd2d510e5c9b7a00bd528d0505198bb5a0ca689cd23432

    • SHA512

      42bb7f46c5ed45cc994cc971cf0b9480b053b0a73817330576c290bfbbef452c8b6961a43f785a5c15b38e5db54c5f5c50bb8f407f2a8f9ba057362b21a6707e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbew:q7Tc2NYHUrAwfMp3CDw

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks