General

  • Target

    ac0847143d6ddbd7a293b980f9644b581cf60d112a795d30370e09d25cea6fe8

  • Size

    456KB

  • Sample

    241224-arjkaawqbp

  • MD5

    96b5302905713cbc556dba40b2724fd6

  • SHA1

    059cb0172902c0c0aa6bd56642b8d1003d36ec46

  • SHA256

    ac0847143d6ddbd7a293b980f9644b581cf60d112a795d30370e09d25cea6fe8

  • SHA512

    d6130a9c5496181423b107f6177695ee1fbc0e7625d2c811de46da75f094bec476e14962137240e1e12b4dd010f37f4d8b9bbe1c987b05db2ae6dc3bf89a5403

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRg:q7Tc2NYHUrAwfMp3CDRg

Malware Config

Targets

    • Target

      ac0847143d6ddbd7a293b980f9644b581cf60d112a795d30370e09d25cea6fe8

    • Size

      456KB

    • MD5

      96b5302905713cbc556dba40b2724fd6

    • SHA1

      059cb0172902c0c0aa6bd56642b8d1003d36ec46

    • SHA256

      ac0847143d6ddbd7a293b980f9644b581cf60d112a795d30370e09d25cea6fe8

    • SHA512

      d6130a9c5496181423b107f6177695ee1fbc0e7625d2c811de46da75f094bec476e14962137240e1e12b4dd010f37f4d8b9bbe1c987b05db2ae6dc3bf89a5403

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRg:q7Tc2NYHUrAwfMp3CDRg

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks