General

  • Target

    f6772efe0a295f7478fe48eee0c761950bcbcdc6c71dcea258725a8555d59a74

  • Size

    454KB

  • Sample

    241224-dd1s7azqeq

  • MD5

    dd5f3562e096ce311223bfa4e024dbd6

  • SHA1

    62b4b9bbcceba5841787aed711f98208c9845152

  • SHA256

    f6772efe0a295f7478fe48eee0c761950bcbcdc6c71dcea258725a8555d59a74

  • SHA512

    c8dd9e4601f3e44c2eb6a07d9bccfbee3e97096233a7000704aca4bdf26a6a8c29c6cd12e985b10c4599ce03067fa6d27c5cfd23eb6ae450330ff04240465409

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbek:q7Tc2NYHUrAwfMp3CDk

Malware Config

Targets

    • Target

      f6772efe0a295f7478fe48eee0c761950bcbcdc6c71dcea258725a8555d59a74

    • Size

      454KB

    • MD5

      dd5f3562e096ce311223bfa4e024dbd6

    • SHA1

      62b4b9bbcceba5841787aed711f98208c9845152

    • SHA256

      f6772efe0a295f7478fe48eee0c761950bcbcdc6c71dcea258725a8555d59a74

    • SHA512

      c8dd9e4601f3e44c2eb6a07d9bccfbee3e97096233a7000704aca4bdf26a6a8c29c6cd12e985b10c4599ce03067fa6d27c5cfd23eb6ae450330ff04240465409

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbek:q7Tc2NYHUrAwfMp3CDk

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks