General

  • Target

    b0db86b53327b0bdb2003783bdd7ef8b7b4dcd5a112e1e44f8052b40c5625cf7

  • Size

    452KB

  • Sample

    241224-ax5ppswpdy

  • MD5

    45115564f4bb5a0b7b752ba5b37bf35f

  • SHA1

    c1df5882aca87af580cd84719e329d7dceb69186

  • SHA256

    b0db86b53327b0bdb2003783bdd7ef8b7b4dcd5a112e1e44f8052b40c5625cf7

  • SHA512

    1c09d280a778b947cb926aa725c8295cdcd1ccc2059cfb4128767f2b1a61812b598dd3be0fdb9bef3095fe35b2222d1913ff73e453b93b378a09c922c4c8b22f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe8:q7Tc2NYHUrAwfMp3CD8

Malware Config

Targets

    • Target

      b0db86b53327b0bdb2003783bdd7ef8b7b4dcd5a112e1e44f8052b40c5625cf7

    • Size

      452KB

    • MD5

      45115564f4bb5a0b7b752ba5b37bf35f

    • SHA1

      c1df5882aca87af580cd84719e329d7dceb69186

    • SHA256

      b0db86b53327b0bdb2003783bdd7ef8b7b4dcd5a112e1e44f8052b40c5625cf7

    • SHA512

      1c09d280a778b947cb926aa725c8295cdcd1ccc2059cfb4128767f2b1a61812b598dd3be0fdb9bef3095fe35b2222d1913ff73e453b93b378a09c922c4c8b22f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe8:q7Tc2NYHUrAwfMp3CD8

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks