General

  • Target

    c292ac19152df46d6e086e4599c78ba37d01b750a4e8cb931d2f2fb0fd3011f8

  • Size

    453KB

  • Sample

    250108-jl6massqbm

  • MD5

    428f9de8c11c350e43f1b64eb48d875e

  • SHA1

    661012d75fbda1296eda55a524559adfecec6047

  • SHA256

    c292ac19152df46d6e086e4599c78ba37d01b750a4e8cb931d2f2fb0fd3011f8

  • SHA512

    4c742dc6a94c293ad6eec546f69d82a5716b101deeb0001c750554906d748ee2100f776272d534502555985a398b5b71f69879e44aae7e1de9c8ead83008c2b4

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbebM:q7Tc2NYHUrAwfMp3CDbM

Malware Config

Targets

    • Target

      c292ac19152df46d6e086e4599c78ba37d01b750a4e8cb931d2f2fb0fd3011f8

    • Size

      453KB

    • MD5

      428f9de8c11c350e43f1b64eb48d875e

    • SHA1

      661012d75fbda1296eda55a524559adfecec6047

    • SHA256

      c292ac19152df46d6e086e4599c78ba37d01b750a4e8cb931d2f2fb0fd3011f8

    • SHA512

      4c742dc6a94c293ad6eec546f69d82a5716b101deeb0001c750554906d748ee2100f776272d534502555985a398b5b71f69879e44aae7e1de9c8ead83008c2b4

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbebM:q7Tc2NYHUrAwfMp3CDbM

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks