General

  • Target

    483f039b0f92eb151472b1176352cf11aec7467014e4336451153ea8424890bc

  • Size

    459KB

  • Sample

    250328-x67lzsskv5

  • MD5

    d64b05071ab0080438a78c78456565fd

  • SHA1

    c017f81d2cb3e9ecb2db8faece9a1fcd7bd7cc9e

  • SHA256

    483f039b0f92eb151472b1176352cf11aec7467014e4336451153ea8424890bc

  • SHA512

    6191500fe8f025850fa0bddd969e29b04c6aee3ef9431dafb71abd32c8ad6a7537c1dbd28445397142c2e8633312a986214b674fb1b78132b9260da19a715cdb

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeG:q7Tc2NYHUrAwfMp3CDG

Malware Config

Targets

    • Target

      483f039b0f92eb151472b1176352cf11aec7467014e4336451153ea8424890bc

    • Size

      459KB

    • MD5

      d64b05071ab0080438a78c78456565fd

    • SHA1

      c017f81d2cb3e9ecb2db8faece9a1fcd7bd7cc9e

    • SHA256

      483f039b0f92eb151472b1176352cf11aec7467014e4336451153ea8424890bc

    • SHA512

      6191500fe8f025850fa0bddd969e29b04c6aee3ef9431dafb71abd32c8ad6a7537c1dbd28445397142c2e8633312a986214b674fb1b78132b9260da19a715cdb

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeG:q7Tc2NYHUrAwfMp3CDG

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks