General

  • Target

    0c674bd4c67b089146fab62e39486220.exe

  • Size

    146KB

  • Sample

    240518-mr477sfe81

  • MD5

    0c674bd4c67b089146fab62e39486220

  • SHA1

    dec61b9fd1c2f540898b658437f468ca519fa57c

  • SHA256

    339fee74fb69e456de2b66de89b74b1ee76a0ad230703404e1926ad676f56b85

  • SHA512

    e451d23b06c485928f5bbf75d863fc9137060f8ae9ab83067a6ccb32fa2144deaeb5aae18b9c0fa55d5042b16ce215e0d652972f1a14632db74fbb1fd2913dbb

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73tvn+Yp9gFbctg0IyAyhZvjDUOy/nmPmT9seF:n3C9BRo7tvnJ9oH0IRgZvjDhy+PmxseF

Malware Config

Targets

    • Target

      0c674bd4c67b089146fab62e39486220.exe

    • Size

      146KB

    • MD5

      0c674bd4c67b089146fab62e39486220

    • SHA1

      dec61b9fd1c2f540898b658437f468ca519fa57c

    • SHA256

      339fee74fb69e456de2b66de89b74b1ee76a0ad230703404e1926ad676f56b85

    • SHA512

      e451d23b06c485928f5bbf75d863fc9137060f8ae9ab83067a6ccb32fa2144deaeb5aae18b9c0fa55d5042b16ce215e0d652972f1a14632db74fbb1fd2913dbb

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73tvn+Yp9gFbctg0IyAyhZvjDUOy/nmPmT9seF:n3C9BRo7tvnJ9oH0IRgZvjDhy+PmxseF

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks