General

  • Target

    07edb2ddb818c6cdf2de02cbad54b500.exe

  • Size

    77KB

  • Sample

    240518-mgvk1seh64

  • MD5

    07edb2ddb818c6cdf2de02cbad54b500

  • SHA1

    239bff800663463c0e6ba5d03f01c7d0c95a4d6c

  • SHA256

    30811111576faca8dd725a02e8c7341d6c4a69a1d1a064b66003010cafb8530a

  • SHA512

    908e078d7b3ea66b5bcd14af502a13d97a5ca158953bb381b9a3024af51e237ccccd417606ce6480a84c67053826d2c4593a9517dc451ab9ff5c3cdf5aaba5a1

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73tgygQwKjiawEmBQ:ymb3NkkiQ3mdBjFo73thgQ/wEkQ

Malware Config

Targets

    • Target

      07edb2ddb818c6cdf2de02cbad54b500.exe

    • Size

      77KB

    • MD5

      07edb2ddb818c6cdf2de02cbad54b500

    • SHA1

      239bff800663463c0e6ba5d03f01c7d0c95a4d6c

    • SHA256

      30811111576faca8dd725a02e8c7341d6c4a69a1d1a064b66003010cafb8530a

    • SHA512

      908e078d7b3ea66b5bcd14af502a13d97a5ca158953bb381b9a3024af51e237ccccd417606ce6480a84c67053826d2c4593a9517dc451ab9ff5c3cdf5aaba5a1

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73tgygQwKjiawEmBQ:ymb3NkkiQ3mdBjFo73thgQ/wEkQ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks