General

  • Target

    714099986857c572809f753782d66cf03cdf374514814c72d297bcd82a360087

  • Size

    337KB

  • Sample

    241224-3eb9nazqgs

  • MD5

    a3192e9f1b5dd3cfd8cd7255e8b5850a

  • SHA1

    07021ab656ef98a8d5d39346050c4b5084d6c217

  • SHA256

    714099986857c572809f753782d66cf03cdf374514814c72d297bcd82a360087

  • SHA512

    54ea232b7d04840298af2c5a1543ece6355f905cfc7042d89aaabe7de05bd2f1e2a036dbdf381fbf3008188431f21c7bad8c907cb00be1bc5ed4156ed98cc4f6

  • SSDEEP

    6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhk:F7Tc8JdSjylh2b77BoTMA9gX59sTsuTU

Malware Config

Targets

    • Target

      714099986857c572809f753782d66cf03cdf374514814c72d297bcd82a360087

    • Size

      337KB

    • MD5

      a3192e9f1b5dd3cfd8cd7255e8b5850a

    • SHA1

      07021ab656ef98a8d5d39346050c4b5084d6c217

    • SHA256

      714099986857c572809f753782d66cf03cdf374514814c72d297bcd82a360087

    • SHA512

      54ea232b7d04840298af2c5a1543ece6355f905cfc7042d89aaabe7de05bd2f1e2a036dbdf381fbf3008188431f21c7bad8c907cb00be1bc5ed4156ed98cc4f6

    • SSDEEP

      6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhk:F7Tc8JdSjylh2b77BoTMA9gX59sTsuTU

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks