General

  • Target

    0a900122ef6d15e3a9e6d14bcb746cc0.exe

  • Size

    65KB

  • Sample

    240518-mnqkmsfc99

  • MD5

    0a900122ef6d15e3a9e6d14bcb746cc0

  • SHA1

    0343ef81f9ff878d5a57f380a29f5d2103903ca0

  • SHA256

    3c51bbb40bbc7671497fbc4c9b1caa8e15b317f21525c63d43c5cc82f8dcf727

  • SHA512

    2c20f520ec9e6bd42850e2d57eaa5b402c58a8d08351055b088a784f5fd826c0611c0327d5784a2fabb0002680e43567b66badb5aeead4b2c9a42b255cc6be26

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIP5:ymb3NkkiQ3mdBjFIFdJ8bT

Malware Config

Targets

    • Target

      0a900122ef6d15e3a9e6d14bcb746cc0.exe

    • Size

      65KB

    • MD5

      0a900122ef6d15e3a9e6d14bcb746cc0

    • SHA1

      0343ef81f9ff878d5a57f380a29f5d2103903ca0

    • SHA256

      3c51bbb40bbc7671497fbc4c9b1caa8e15b317f21525c63d43c5cc82f8dcf727

    • SHA512

      2c20f520ec9e6bd42850e2d57eaa5b402c58a8d08351055b088a784f5fd826c0611c0327d5784a2fabb0002680e43567b66badb5aeead4b2c9a42b255cc6be26

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIP5:ymb3NkkiQ3mdBjFIFdJ8bT

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks