General

  • Target

    a065e76e035e48499c370be82db5f63c2d8854dc8e8878415cfebf434f52a702

  • Size

    333KB

  • Sample

    250108-f7xdzaylek

  • MD5

    86856cb472e322bf979cae5951d001f1

  • SHA1

    0c3a6ee6800e11881eec3932ac74b7983d510470

  • SHA256

    a065e76e035e48499c370be82db5f63c2d8854dc8e8878415cfebf434f52a702

  • SHA512

    a59b183ac3eca523261d89509f6c02d495fd3d7ae8f011a2bdecd2d728edbd415c2f42f295b3afff692bc7d193d3da961e0a495aea52bd223008e73712263a60

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeZy:R4wFHoSHYHUrAwfMp3CDZy

Malware Config

Targets

    • Target

      a065e76e035e48499c370be82db5f63c2d8854dc8e8878415cfebf434f52a702

    • Size

      333KB

    • MD5

      86856cb472e322bf979cae5951d001f1

    • SHA1

      0c3a6ee6800e11881eec3932ac74b7983d510470

    • SHA256

      a065e76e035e48499c370be82db5f63c2d8854dc8e8878415cfebf434f52a702

    • SHA512

      a59b183ac3eca523261d89509f6c02d495fd3d7ae8f011a2bdecd2d728edbd415c2f42f295b3afff692bc7d193d3da961e0a495aea52bd223008e73712263a60

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeZy:R4wFHoSHYHUrAwfMp3CDZy

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks