General

  • Target

    0f6ba6ac6be853b81a2f2abfc06469d0.exe

  • Size

    339KB

  • Sample

    240518-m1fwzaga57

  • MD5

    0f6ba6ac6be853b81a2f2abfc06469d0

  • SHA1

    19e5ba2ff9f8f5b62ca4d942f74074884f7aa2e8

  • SHA256

    ceda7115fb170d0edfba4cc9ec2fa1a9f84d477a86bdb714e3a87096ee564bcc

  • SHA512

    f64e40ec8b2d2deabb0ac3d9949b796603c6beaa688ff4c93728d99083fb4dddb5544185a2fad315761f2e086d73e2a278117b5a9309b601f09a9056fe1a99bd

  • SSDEEP

    3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JBHNgu5ex1B2OkEv0KvmhNic:9cm4FmowdHoS4BtguSPKyHc

Malware Config

Targets

    • Target

      0f6ba6ac6be853b81a2f2abfc06469d0.exe

    • Size

      339KB

    • MD5

      0f6ba6ac6be853b81a2f2abfc06469d0

    • SHA1

      19e5ba2ff9f8f5b62ca4d942f74074884f7aa2e8

    • SHA256

      ceda7115fb170d0edfba4cc9ec2fa1a9f84d477a86bdb714e3a87096ee564bcc

    • SHA512

      f64e40ec8b2d2deabb0ac3d9949b796603c6beaa688ff4c93728d99083fb4dddb5544185a2fad315761f2e086d73e2a278117b5a9309b601f09a9056fe1a99bd

    • SSDEEP

      3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JBHNgu5ex1B2OkEv0KvmhNic:9cm4FmowdHoS4BtguSPKyHc

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks