General

  • Target

    dbf59bee28522b6b8b4a70f6604b0e5663151d4c07141f38f881cf251e66fe97

  • Size

    453KB

  • Sample

    241223-ec6tgswjbq

  • MD5

    26cf3cda4e28c363c1baea91fa96e3d6

  • SHA1

    9b5965b7c46f4554757716f97a3cac6398f2833c

  • SHA256

    dbf59bee28522b6b8b4a70f6604b0e5663151d4c07141f38f881cf251e66fe97

  • SHA512

    139098b143df2ffa28ba482168b5f8ee03fe351b1b75fe0da95ef8433bb6db9d849ba37e090accd1fcd40fb800a1571b4782b1ac346f45fda5b2918d8b3f5186

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeh:q7Tc2NYHUrAwfMp3CDh

Malware Config

Targets

    • Target

      dbf59bee28522b6b8b4a70f6604b0e5663151d4c07141f38f881cf251e66fe97

    • Size

      453KB

    • MD5

      26cf3cda4e28c363c1baea91fa96e3d6

    • SHA1

      9b5965b7c46f4554757716f97a3cac6398f2833c

    • SHA256

      dbf59bee28522b6b8b4a70f6604b0e5663151d4c07141f38f881cf251e66fe97

    • SHA512

      139098b143df2ffa28ba482168b5f8ee03fe351b1b75fe0da95ef8433bb6db9d849ba37e090accd1fcd40fb800a1571b4782b1ac346f45fda5b2918d8b3f5186

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeh:q7Tc2NYHUrAwfMp3CDh

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks