General

  • Target

    def77ccef9d5c3bcedc6135fc12e072d3c93b07220d23816be9bb1428273f073

  • Size

    455KB

  • Sample

    241223-egxrdawjfq

  • MD5

    77bcfa006d7016c0715c28ef224606fd

  • SHA1

    715bb07b62bbc273c8433c6d516b5000354a2cd4

  • SHA256

    def77ccef9d5c3bcedc6135fc12e072d3c93b07220d23816be9bb1428273f073

  • SHA512

    55949b925a5ca2cfbd954a125f7e845cf4bd8edaa90cb01a525ddc82c5495d8350c456131930086bc4124e6f6f97c33fc1aa87e80f7de230c61f76a99b311223

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR3:q7Tc2NYHUrAwfMp3CDR3

Malware Config

Targets

    • Target

      def77ccef9d5c3bcedc6135fc12e072d3c93b07220d23816be9bb1428273f073

    • Size

      455KB

    • MD5

      77bcfa006d7016c0715c28ef224606fd

    • SHA1

      715bb07b62bbc273c8433c6d516b5000354a2cd4

    • SHA256

      def77ccef9d5c3bcedc6135fc12e072d3c93b07220d23816be9bb1428273f073

    • SHA512

      55949b925a5ca2cfbd954a125f7e845cf4bd8edaa90cb01a525ddc82c5495d8350c456131930086bc4124e6f6f97c33fc1aa87e80f7de230c61f76a99b311223

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR3:q7Tc2NYHUrAwfMp3CDR3

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks