General

  • Target

    62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11

  • Size

    92KB

  • Sample

    250328-282wqstvdy

  • MD5

    b78227c496e6be0eda3dccd46ee6618a

  • SHA1

    146a0d1753bf87bca658c62059e4c90bb284766f

  • SHA256

    62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11

  • SHA512

    4fa71154708d88758536bd1c16cdac44bf885c68e42e70f55f86623da38eb16a52e1a836da8a36b32c29d2b3a319eadadb9f6981f1fcd6dec12ba0fd84287c03

  • SSDEEP

    1536:8vQBeOGtrYS3srx93UBWfwC6Ggnouy80fg3Cip8iXAsG5M0u5fVBA1m:8hOmTsF93UYfwC6GIout0fmCiiiXA6NF

Malware Config

Targets

    • Target

      62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11

    • Size

      92KB

    • MD5

      b78227c496e6be0eda3dccd46ee6618a

    • SHA1

      146a0d1753bf87bca658c62059e4c90bb284766f

    • SHA256

      62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11

    • SHA512

      4fa71154708d88758536bd1c16cdac44bf885c68e42e70f55f86623da38eb16a52e1a836da8a36b32c29d2b3a319eadadb9f6981f1fcd6dec12ba0fd84287c03

    • SSDEEP

      1536:8vQBeOGtrYS3srx93UBWfwC6Ggnouy80fg3Cip8iXAsG5M0u5fVBA1m:8hOmTsF93UYfwC6GIout0fmCiiiXA6NF

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks