General

  • Target

    d08b42e2890d978b3acd7b3050bc9384a11e7577356ccaf2d48394c6d324977e

  • Size

    453KB

  • Sample

    241223-dvw7bsvpfn

  • MD5

    5d0de506f390fc44daed045414089f2f

  • SHA1

    be0e5700f6be24b44cd2a66e034c279797b1339d

  • SHA256

    d08b42e2890d978b3acd7b3050bc9384a11e7577356ccaf2d48394c6d324977e

  • SHA512

    5f967b0521dc3edfc8b5f08a7a6cf033847cd59075b40cb3b7f889b665da5250273e47d264d5df4cadb4db9ce79d2cc19c4c6625c0ed737d6bdef3b59a507b78

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeH:q7Tc2NYHUrAwfMp3CDH

Malware Config

Targets

    • Target

      d08b42e2890d978b3acd7b3050bc9384a11e7577356ccaf2d48394c6d324977e

    • Size

      453KB

    • MD5

      5d0de506f390fc44daed045414089f2f

    • SHA1

      be0e5700f6be24b44cd2a66e034c279797b1339d

    • SHA256

      d08b42e2890d978b3acd7b3050bc9384a11e7577356ccaf2d48394c6d324977e

    • SHA512

      5f967b0521dc3edfc8b5f08a7a6cf033847cd59075b40cb3b7f889b665da5250273e47d264d5df4cadb4db9ce79d2cc19c4c6625c0ed737d6bdef3b59a507b78

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeH:q7Tc2NYHUrAwfMp3CDH

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks