General

  • Target

    cWXfv4LPZzqnwdFjgkZExVhaMZJewilrvuOQxYzt.exe

  • Size

    146KB

  • Sample

    230611-ctt5xagd55

  • MD5

    c789a3a89d17ab41fa660c3f59f376d4

  • SHA1

    eba0b3e7b3a76a23132cee507061f6987abe3137

  • SHA256

    91fa268b81a58456c39e93b97edf93d337211e3f2e6f5c74b953f4cb6776aa27

  • SHA512

    3aee37a638856e92b732ef923afa8ce4a7836555ba1f0159d9b23a8a72f2809bf3aad73f412d00b162403c5cfd0e75e4ee33b6eb4079aa0eefc83aa595e143c8

  • SSDEEP

    3072:SNsrb3QnnOxoxYGYn8C4zIB2eBH6CaucLD1kkQIpEH5xsXFHzZpbWjRBLFk/Pout:qsX3QnM8CDwgDcLxQI+ZxkHzf2RB2/PZ

Malware Config

Targets

    • Target

      cWXfv4LPZzqnwdFjgkZExVhaMZJewilrvuOQxYzt.exe

    • Size

      146KB

    • MD5

      c789a3a89d17ab41fa660c3f59f376d4

    • SHA1

      eba0b3e7b3a76a23132cee507061f6987abe3137

    • SHA256

      91fa268b81a58456c39e93b97edf93d337211e3f2e6f5c74b953f4cb6776aa27

    • SHA512

      3aee37a638856e92b732ef923afa8ce4a7836555ba1f0159d9b23a8a72f2809bf3aad73f412d00b162403c5cfd0e75e4ee33b6eb4079aa0eefc83aa595e143c8

    • SSDEEP

      3072:SNsrb3QnnOxoxYGYn8C4zIB2eBH6CaucLD1kkQIpEH5xsXFHzZpbWjRBLFk/Pout:qsX3QnM8CDwgDcLxQI+ZxkHzf2RB2/PZ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks