General

  • Target

    b8dc278b284474bd0cc523d752899f840ad9339d6a7a77a3f026f9cd3c12da43

  • Size

    454KB

  • Sample

    241224-bahgbsxjgv

  • MD5

    a10630f3225618121648cb7fbe9f2c1f

  • SHA1

    f7f30eec18c1e3bd98172c2d4175db9f5a855f77

  • SHA256

    b8dc278b284474bd0cc523d752899f840ad9339d6a7a77a3f026f9cd3c12da43

  • SHA512

    ef0474dc6b450fe5d2de416fff91812f94356f05eadf221d0496da1b88f238a70ed3c5e094d9d14ac40389c22c32b9ac82262b5186d73b54a2da8428c32d225c

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

Malware Config

Targets

    • Target

      b8dc278b284474bd0cc523d752899f840ad9339d6a7a77a3f026f9cd3c12da43

    • Size

      454KB

    • MD5

      a10630f3225618121648cb7fbe9f2c1f

    • SHA1

      f7f30eec18c1e3bd98172c2d4175db9f5a855f77

    • SHA256

      b8dc278b284474bd0cc523d752899f840ad9339d6a7a77a3f026f9cd3c12da43

    • SHA512

      ef0474dc6b450fe5d2de416fff91812f94356f05eadf221d0496da1b88f238a70ed3c5e094d9d14ac40389c22c32b9ac82262b5186d73b54a2da8428c32d225c

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks