General

  • Target

    aa2d89a5a9c74e3992aa0d6c0f6edb084b5a27f4a2200f21afd090bdeeb16f15

  • Size

    672KB

  • Sample

    241223-lzvhasyjew

  • MD5

    bf792f524c5fe01431df38a93b713cc7

  • SHA1

    b64044b3da69ac4b444173111c3053edb00ff5ec

  • SHA256

    aa2d89a5a9c74e3992aa0d6c0f6edb084b5a27f4a2200f21afd090bdeeb16f15

  • SHA512

    bf86e546dd3fda3c2293058bb9560fb81e85b4e5a81f732b189bd61144907c18794ad4f31b4d87b74b14abeede9bcd27f0d03f58458ca15a8b35f15b5b440bb5

  • SSDEEP

    12288:pTRaj8SoGYOOtqHnNEFRPHJfVXohEowsL1BTfAh6p9DesBEoS:pNapoGzHNEFRjoh3XjxesB

Malware Config

Targets

    • Target

      aa2d89a5a9c74e3992aa0d6c0f6edb084b5a27f4a2200f21afd090bdeeb16f15

    • Size

      672KB

    • MD5

      bf792f524c5fe01431df38a93b713cc7

    • SHA1

      b64044b3da69ac4b444173111c3053edb00ff5ec

    • SHA256

      aa2d89a5a9c74e3992aa0d6c0f6edb084b5a27f4a2200f21afd090bdeeb16f15

    • SHA512

      bf86e546dd3fda3c2293058bb9560fb81e85b4e5a81f732b189bd61144907c18794ad4f31b4d87b74b14abeede9bcd27f0d03f58458ca15a8b35f15b5b440bb5

    • SSDEEP

      12288:pTRaj8SoGYOOtqHnNEFRPHJfVXohEowsL1BTfAh6p9DesBEoS:pNapoGzHNEFRjoh3XjxesB

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks