General

  • Target

    a897d71c931c5a1bbb56be6808d62a630659142c9e8f96ad84e5a07cfc524e99

  • Size

    696KB

  • Sample

    241224-h6sqhasrar

  • MD5

    f0e617be50b93da2ed30831bcaef1fb8

  • SHA1

    0f6895c0fa54256de0a2b93d6e3933837a166ef6

  • SHA256

    a897d71c931c5a1bbb56be6808d62a630659142c9e8f96ad84e5a07cfc524e99

  • SHA512

    db0378fa4bd9326bd1761b9db12eed28d814ebb81e5708a2c13c193d94c9028b2b3b7464dd23c298deee01382338d766f138f6907466f7c576f250e8e52fbdcc

  • SSDEEP

    12288:u5b5+2L7vydj9BeRKJ6pBWnlEkl8bTQoLUnoN8EuBjaCCZH3wzfGNCRZT+oS:5A+dj9Bo0dl83hLUn1EuBjCZ+G

Malware Config

Targets

    • Target

      a897d71c931c5a1bbb56be6808d62a630659142c9e8f96ad84e5a07cfc524e99

    • Size

      696KB

    • MD5

      f0e617be50b93da2ed30831bcaef1fb8

    • SHA1

      0f6895c0fa54256de0a2b93d6e3933837a166ef6

    • SHA256

      a897d71c931c5a1bbb56be6808d62a630659142c9e8f96ad84e5a07cfc524e99

    • SHA512

      db0378fa4bd9326bd1761b9db12eed28d814ebb81e5708a2c13c193d94c9028b2b3b7464dd23c298deee01382338d766f138f6907466f7c576f250e8e52fbdcc

    • SSDEEP

      12288:u5b5+2L7vydj9BeRKJ6pBWnlEkl8bTQoLUnoN8EuBjaCCZH3wzfGNCRZT+oS:5A+dj9Bo0dl83hLUn1EuBjCZ+G

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks