General

  • Target

    08e1231130fbdb0fd7abdcebfe9bfd60.exe

  • Size

    361KB

  • Sample

    240518-mj9gysfa97

  • MD5

    08e1231130fbdb0fd7abdcebfe9bfd60

  • SHA1

    a6f599b6cb7d84a8680a97daa300e41b5a7dcf41

  • SHA256

    11ee365f78d27f3593b0739d9a64b2b4fd2f5f79a1357e02439074426399c07b

  • SHA512

    76fc88d40bb22a4da4558c7e08f73bcaeb0407f52faec5efcbe979319b4f83b9a66f5ff06f508d180bd280ffc5fa15031656cdf99783f4d642e0cd968d5c391c

  • SSDEEP

    6144:n3C9BRIG0asYFm71m8+GdkB9yMu7N+8px7P:n3C9uYA71kSMu08px7P

Malware Config

Targets

    • Target

      08e1231130fbdb0fd7abdcebfe9bfd60.exe

    • Size

      361KB

    • MD5

      08e1231130fbdb0fd7abdcebfe9bfd60

    • SHA1

      a6f599b6cb7d84a8680a97daa300e41b5a7dcf41

    • SHA256

      11ee365f78d27f3593b0739d9a64b2b4fd2f5f79a1357e02439074426399c07b

    • SHA512

      76fc88d40bb22a4da4558c7e08f73bcaeb0407f52faec5efcbe979319b4f83b9a66f5ff06f508d180bd280ffc5fa15031656cdf99783f4d642e0cd968d5c391c

    • SSDEEP

      6144:n3C9BRIG0asYFm71m8+GdkB9yMu7N+8px7P:n3C9uYA71kSMu08px7P

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks