General

  • Target

    0fc87ecc4e6230332d5c67b6d2fb6960.exe

  • Size

    62KB

  • Sample

    240518-m19t2sgb2x

  • MD5

    0fc87ecc4e6230332d5c67b6d2fb6960

  • SHA1

    0f79e86de9ff3ed89bccf9ac207ed1fde0ae7e89

  • SHA256

    6c135f0f07151f2c21d45f2e9d750442d8c44905da6c0927ad29e199adbb2841

  • SHA512

    182187899f64b42edfb34c9ddeaa443b0992f3ae189c5f6d7789055fc0a3852380b2b9b940c090412ae930e67b1272175e7c4080d1db48094b1a1aa17aead9dd

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDII9ZvHKE9:ymb3NkkiQ3mdBjFII9ZvHKE9

Malware Config

Targets

    • Target

      0fc87ecc4e6230332d5c67b6d2fb6960.exe

    • Size

      62KB

    • MD5

      0fc87ecc4e6230332d5c67b6d2fb6960

    • SHA1

      0f79e86de9ff3ed89bccf9ac207ed1fde0ae7e89

    • SHA256

      6c135f0f07151f2c21d45f2e9d750442d8c44905da6c0927ad29e199adbb2841

    • SHA512

      182187899f64b42edfb34c9ddeaa443b0992f3ae189c5f6d7789055fc0a3852380b2b9b940c090412ae930e67b1272175e7c4080d1db48094b1a1aa17aead9dd

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDII9ZvHKE9:ymb3NkkiQ3mdBjFII9ZvHKE9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks