General

  • Target

    45928bd41becf97a265b366f383790d17a9b6ec477f488d395cb6cdecc531ae4

  • Size

    454KB

  • Sample

    241223-zxbjas1mft

  • MD5

    ca175a8654e17740060bd3dc7beecc4c

  • SHA1

    1fca61813a09a03bc15d5d3e8904ac619cd66949

  • SHA256

    45928bd41becf97a265b366f383790d17a9b6ec477f488d395cb6cdecc531ae4

  • SHA512

    7b2ebc19b512ae2c36f8c9a52d2ac70ec60bfaf72ce8bb910ad43ba2eb694d79ad10d09b8535d52d8803608da17b304b54da9af807bfc20412773917138842e1

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTx:q7Tc2NYHUrAwfMp3CDd

Malware Config

Targets

    • Target

      45928bd41becf97a265b366f383790d17a9b6ec477f488d395cb6cdecc531ae4

    • Size

      454KB

    • MD5

      ca175a8654e17740060bd3dc7beecc4c

    • SHA1

      1fca61813a09a03bc15d5d3e8904ac619cd66949

    • SHA256

      45928bd41becf97a265b366f383790d17a9b6ec477f488d395cb6cdecc531ae4

    • SHA512

      7b2ebc19b512ae2c36f8c9a52d2ac70ec60bfaf72ce8bb910ad43ba2eb694d79ad10d09b8535d52d8803608da17b304b54da9af807bfc20412773917138842e1

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTx:q7Tc2NYHUrAwfMp3CDd

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks