General

  • Target

    0f7958c6bc59d18c9db2569b619695f0.exe

  • Size

    344KB

  • Sample

    240518-m1k6paga8v

  • MD5

    0f7958c6bc59d18c9db2569b619695f0

  • SHA1

    ca9c7f1559d6f48d17c4217e649ffe46bf3e8e94

  • SHA256

    d379ba5014525bcff60961171fdc24cf8426a242908e6721c0dd1b2ec83ce352

  • SHA512

    11f458728fce300e47fa3013b6ecdcd8fa59668d764851c45312f85a649d401e92210096fb52572daa53ab9083c574d575afbb7ddf99206419bb7cd7931a08b2

  • SSDEEP

    6144:n3C9BRo/AIX2MUXownfWQkyCpxwJz9e0pQowLh3EhToK9cT085mnFhXjmnwJQyIO:n3C9uDnUXoSWlnwJv90aKToFqwfIBA

Malware Config

Targets

    • Target

      0f7958c6bc59d18c9db2569b619695f0.exe

    • Size

      344KB

    • MD5

      0f7958c6bc59d18c9db2569b619695f0

    • SHA1

      ca9c7f1559d6f48d17c4217e649ffe46bf3e8e94

    • SHA256

      d379ba5014525bcff60961171fdc24cf8426a242908e6721c0dd1b2ec83ce352

    • SHA512

      11f458728fce300e47fa3013b6ecdcd8fa59668d764851c45312f85a649d401e92210096fb52572daa53ab9083c574d575afbb7ddf99206419bb7cd7931a08b2

    • SSDEEP

      6144:n3C9BRo/AIX2MUXownfWQkyCpxwJz9e0pQowLh3EhToK9cT085mnFhXjmnwJQyIO:n3C9uDnUXoSWlnwJv90aKToFqwfIBA

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks