General

  • Target

    0cb37eccb42d0ccd95663fe870416940.exe

  • Size

    205KB

  • Sample

    240518-msskssff55

  • MD5

    0cb37eccb42d0ccd95663fe870416940

  • SHA1

    7125359b9ce010ee86caadfb53e0475ee49146fd

  • SHA256

    57f2ebcc1a880fd518f01ee23f5ce06de57a088bfd38ade1684f00a20dbcab28

  • SHA512

    214643ff4079577a5ffca1a7ec99147a7452bdbfe1e5681f2055f609c07c141413795328e2e85df55467e4b0b21b1eaed424709998a20b5301bf14287ec238d1

  • SSDEEP

    1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+C2HVM1p6TQpCihh:PhOm2sI93UufdC67ciJTU2HVS64hh

Malware Config

Targets

    • Target

      0cb37eccb42d0ccd95663fe870416940.exe

    • Size

      205KB

    • MD5

      0cb37eccb42d0ccd95663fe870416940

    • SHA1

      7125359b9ce010ee86caadfb53e0475ee49146fd

    • SHA256

      57f2ebcc1a880fd518f01ee23f5ce06de57a088bfd38ade1684f00a20dbcab28

    • SHA512

      214643ff4079577a5ffca1a7ec99147a7452bdbfe1e5681f2055f609c07c141413795328e2e85df55467e4b0b21b1eaed424709998a20b5301bf14287ec238d1

    • SSDEEP

      1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+C2HVM1p6TQpCihh:PhOm2sI93UufdC67ciJTU2HVS64hh

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks