General

  • Target

    db19bf2fbdefa3906ce1c0f5e163d96db101e0116d42032f1febe79f450fa61c

  • Size

    454KB

  • Sample

    241223-efgzjawjel

  • MD5

    22de0ac9b93345e4b13913035fe0b3cf

  • SHA1

    2129c6e6a5fc00548b6a4e19e95b35a0f08b2427

  • SHA256

    db19bf2fbdefa3906ce1c0f5e163d96db101e0116d42032f1febe79f450fa61c

  • SHA512

    04e34c950fc1fce9717018eb2d0edbbdbc9cb502984e3ba028bff3b8de19c3a9366e8e219e88d62a340f1c0eb1e566b12398813899a3d58fc2fd7f45b106bc8d

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeToD:q7Tc2NYHUrAwfMp3CDcD

Malware Config

Targets

    • Target

      db19bf2fbdefa3906ce1c0f5e163d96db101e0116d42032f1febe79f450fa61c

    • Size

      454KB

    • MD5

      22de0ac9b93345e4b13913035fe0b3cf

    • SHA1

      2129c6e6a5fc00548b6a4e19e95b35a0f08b2427

    • SHA256

      db19bf2fbdefa3906ce1c0f5e163d96db101e0116d42032f1febe79f450fa61c

    • SHA512

      04e34c950fc1fce9717018eb2d0edbbdbc9cb502984e3ba028bff3b8de19c3a9366e8e219e88d62a340f1c0eb1e566b12398813899a3d58fc2fd7f45b106bc8d

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeToD:q7Tc2NYHUrAwfMp3CDcD

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks