General

  • Target

    d5dea1e7400795564452d50b200ee224155cb9a50eefbc962305a96f41722ad1

  • Size

    189KB

  • Sample

    241223-ntkf9ayphz

  • MD5

    a598110f0901aec6f4ba320228db6a65

  • SHA1

    683bb370e94cf0d0dd4233b233f3bf4fb1875bde

  • SHA256

    d5dea1e7400795564452d50b200ee224155cb9a50eefbc962305a96f41722ad1

  • SHA512

    d75b05e95711f0de86059135e4c811a5f75cdb0a2d1b72f03bae4f92d4db47002ca240235187947c8cd53ab433fc9904278183e2f3bd041556f7769dce271d65

  • SSDEEP

    3072:N+L0ARFF1Tl/kVbmEpqQKedroyoNHRUzactWN54jZbi6NHpuwZ41y0+dsMHXR55Z:N+YA91BmX1oXNWa8LrFAwId+dsQRToS

Malware Config

Targets

    • Target

      d5dea1e7400795564452d50b200ee224155cb9a50eefbc962305a96f41722ad1

    • Size

      189KB

    • MD5

      a598110f0901aec6f4ba320228db6a65

    • SHA1

      683bb370e94cf0d0dd4233b233f3bf4fb1875bde

    • SHA256

      d5dea1e7400795564452d50b200ee224155cb9a50eefbc962305a96f41722ad1

    • SHA512

      d75b05e95711f0de86059135e4c811a5f75cdb0a2d1b72f03bae4f92d4db47002ca240235187947c8cd53ab433fc9904278183e2f3bd041556f7769dce271d65

    • SSDEEP

      3072:N+L0ARFF1Tl/kVbmEpqQKedroyoNHRUzactWN54jZbi6NHpuwZ41y0+dsMHXR55Z:N+YA91BmX1oXNWa8LrFAwId+dsQRToS

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks