General

  • Target

    f54f12a8bdbe8a71dd3d90f2197f708f734b822fe849d4ac823f31671318fdaf

  • Size

    454KB

  • Sample

    241223-e94qdswldv

  • MD5

    461470b4af3eecdfe0353a10b7114339

  • SHA1

    f28906cfbcc6482783b7f3920f033e8127e2893c

  • SHA256

    f54f12a8bdbe8a71dd3d90f2197f708f734b822fe849d4ac823f31671318fdaf

  • SHA512

    4cbd68100dd8cde189a3d54fc29eb5381a4df4bc99e7d02f6d00dd0cfbb5aebb7b7934e690f75302696e4493943769b2be418c90bedac2405d8c45e1b698c3e0

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbew:q7Tc2NYHUrAwfMp3CDw

Malware Config

Targets

    • Target

      f54f12a8bdbe8a71dd3d90f2197f708f734b822fe849d4ac823f31671318fdaf

    • Size

      454KB

    • MD5

      461470b4af3eecdfe0353a10b7114339

    • SHA1

      f28906cfbcc6482783b7f3920f033e8127e2893c

    • SHA256

      f54f12a8bdbe8a71dd3d90f2197f708f734b822fe849d4ac823f31671318fdaf

    • SHA512

      4cbd68100dd8cde189a3d54fc29eb5381a4df4bc99e7d02f6d00dd0cfbb5aebb7b7934e690f75302696e4493943769b2be418c90bedac2405d8c45e1b698c3e0

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbew:q7Tc2NYHUrAwfMp3CDw

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks