General

  • Target

    5462efbc34050eb79f20937efa64b21ba14737dbff058cc5dcf298c1b6a2bd78

  • Size

    454KB

  • Sample

    241228-254k6avkcz

  • MD5

    9b57a1717d278b37820b7f49941b7f85

  • SHA1

    48483f11211dcce237a83a25c88ccefd3a234d82

  • SHA256

    5462efbc34050eb79f20937efa64b21ba14737dbff058cc5dcf298c1b6a2bd78

  • SHA512

    5dada7d503999b4a737e99cdcf8cb6247f1e8624456e86f28b18cd342535cf89d50bb020bf276847dbf690d608d31d1625c7a0e8fdd05b886c43eca640d1446c

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe4:q7Tc2NYHUrAwfMp3CD4

Malware Config

Targets

    • Target

      5462efbc34050eb79f20937efa64b21ba14737dbff058cc5dcf298c1b6a2bd78

    • Size

      454KB

    • MD5

      9b57a1717d278b37820b7f49941b7f85

    • SHA1

      48483f11211dcce237a83a25c88ccefd3a234d82

    • SHA256

      5462efbc34050eb79f20937efa64b21ba14737dbff058cc5dcf298c1b6a2bd78

    • SHA512

      5dada7d503999b4a737e99cdcf8cb6247f1e8624456e86f28b18cd342535cf89d50bb020bf276847dbf690d608d31d1625c7a0e8fdd05b886c43eca640d1446c

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe4:q7Tc2NYHUrAwfMp3CD4

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks