General

  • Target

    58e2533261b6535dc69d7826c2be86af65c7f03a8327837cec194bc9862bdab7

  • Size

    454KB

  • Sample

    241224-2cyjfayphy

  • MD5

    70ec4dcdfb5655fcf8ef57952cd978a2

  • SHA1

    670e2b90ba7db614d0888071d81cdb9485447c47

  • SHA256

    58e2533261b6535dc69d7826c2be86af65c7f03a8327837cec194bc9862bdab7

  • SHA512

    bd3068e190c201ca8a5505ea757571af4ec3038ca91165e11cea44b73720e88f7ede52c6b552cdba1f08c6f3c374b294ab10c0d72a8e86d361172373904039f8

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbec:q7Tc2NYHUrAwfMp3CDc

Malware Config

Targets

    • Target

      58e2533261b6535dc69d7826c2be86af65c7f03a8327837cec194bc9862bdab7

    • Size

      454KB

    • MD5

      70ec4dcdfb5655fcf8ef57952cd978a2

    • SHA1

      670e2b90ba7db614d0888071d81cdb9485447c47

    • SHA256

      58e2533261b6535dc69d7826c2be86af65c7f03a8327837cec194bc9862bdab7

    • SHA512

      bd3068e190c201ca8a5505ea757571af4ec3038ca91165e11cea44b73720e88f7ede52c6b552cdba1f08c6f3c374b294ab10c0d72a8e86d361172373904039f8

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbec:q7Tc2NYHUrAwfMp3CDc

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks