General

  • Target

    0887a98ad2e4c9016dc70d1946340294c1837e2a666407f17e3cc5c918980ea0

  • Size

    454KB

  • Sample

    241223-x2yhhsylak

  • MD5

    2c730cd47a602fc4d13a2686a9dd5bd9

  • SHA1

    be734adb93753935dca282c4fd06dd90c4fbfb60

  • SHA256

    0887a98ad2e4c9016dc70d1946340294c1837e2a666407f17e3cc5c918980ea0

  • SHA512

    00a5897997e1432b76af169e9d9f65311a001155cac62670992a4424fb6035a9474a6065b5ea1a5d7383ac04d8080cb3cd2c50754a17bc2daf194bc43db8ed7f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe7W:q7Tc2NYHUrAwfMp3CDC

Malware Config

Targets

    • Target

      0887a98ad2e4c9016dc70d1946340294c1837e2a666407f17e3cc5c918980ea0

    • Size

      454KB

    • MD5

      2c730cd47a602fc4d13a2686a9dd5bd9

    • SHA1

      be734adb93753935dca282c4fd06dd90c4fbfb60

    • SHA256

      0887a98ad2e4c9016dc70d1946340294c1837e2a666407f17e3cc5c918980ea0

    • SHA512

      00a5897997e1432b76af169e9d9f65311a001155cac62670992a4424fb6035a9474a6065b5ea1a5d7383ac04d8080cb3cd2c50754a17bc2daf194bc43db8ed7f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe7W:q7Tc2NYHUrAwfMp3CDC

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks