General

  • Target

    acf4c30908e3dd4bfa3a7510fef2e33640569555e3b3f05503c3e2e0f2de3582

  • Size

    453KB

  • Sample

    241224-arf46awncx

  • MD5

    dda859c1e7986cab886e126bdff21813

  • SHA1

    391e2761ea9d2ed0f5d83f2c986dfbb393661ab8

  • SHA256

    acf4c30908e3dd4bfa3a7510fef2e33640569555e3b3f05503c3e2e0f2de3582

  • SHA512

    2577c49c10aa950b1d2b7c2b6003ee5b5b8ef11b8afdde8ad75a19d1fc5f1876c087db40d11720e2d8a0369c4c1be8e4167c826c94114450bd2a348b27a1706d

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeI:q7Tc2NYHUrAwfMp3CDI

Malware Config

Targets

    • Target

      acf4c30908e3dd4bfa3a7510fef2e33640569555e3b3f05503c3e2e0f2de3582

    • Size

      453KB

    • MD5

      dda859c1e7986cab886e126bdff21813

    • SHA1

      391e2761ea9d2ed0f5d83f2c986dfbb393661ab8

    • SHA256

      acf4c30908e3dd4bfa3a7510fef2e33640569555e3b3f05503c3e2e0f2de3582

    • SHA512

      2577c49c10aa950b1d2b7c2b6003ee5b5b8ef11b8afdde8ad75a19d1fc5f1876c087db40d11720e2d8a0369c4c1be8e4167c826c94114450bd2a348b27a1706d

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeI:q7Tc2NYHUrAwfMp3CDI

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks