General

  • Target

    6b23eb05a8461a33c373e89b1dbe1a31bab9f886807f1e4ad208f130ca3c7d47

  • Size

    687KB

  • Sample

    241224-xfwrsstpgx

  • MD5

    e2f28da601ab14d9caff7f00fae89227

  • SHA1

    a0c1fd7bbf816d92e5d571a0386ba4c09a1cc087

  • SHA256

    6b23eb05a8461a33c373e89b1dbe1a31bab9f886807f1e4ad208f130ca3c7d47

  • SHA512

    47786ef4cc9b4eed25da9d5aec2cb36302d34a1eb47ffa9310389a212eb5ec53f52c2fb59e59e9c9cdcb8e2b8926c8dcb23aea7ff43f6a7df7a85e2db4117935

  • SSDEEP

    12288:pS/a3bNTQ6AG4yz5MXOufdleayeA+FGDbzqWSGpqtRaKcVyABieqoS:Oa3bN0Gzz5MXOuVloeEDPa3w

Malware Config

Targets

    • Target

      6b23eb05a8461a33c373e89b1dbe1a31bab9f886807f1e4ad208f130ca3c7d47

    • Size

      687KB

    • MD5

      e2f28da601ab14d9caff7f00fae89227

    • SHA1

      a0c1fd7bbf816d92e5d571a0386ba4c09a1cc087

    • SHA256

      6b23eb05a8461a33c373e89b1dbe1a31bab9f886807f1e4ad208f130ca3c7d47

    • SHA512

      47786ef4cc9b4eed25da9d5aec2cb36302d34a1eb47ffa9310389a212eb5ec53f52c2fb59e59e9c9cdcb8e2b8926c8dcb23aea7ff43f6a7df7a85e2db4117935

    • SSDEEP

      12288:pS/a3bNTQ6AG4yz5MXOufdleayeA+FGDbzqWSGpqtRaKcVyABieqoS:Oa3bN0Gzz5MXOuVloeEDPa3w

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks