General

  • Target

    0ef5a16e05fcf26ace98349932189a10.exe

  • Size

    361KB

  • Sample

    240518-my8h7sfh9z

  • MD5

    0ef5a16e05fcf26ace98349932189a10

  • SHA1

    3cf823764c97489e83c490eeecd51558ea5bf03c

  • SHA256

    a1ba1ed05a7b7b064cde95533eb97f4c291779ee87817b1e667aa74d1334fc32

  • SHA512

    ed22056fd6661b2bcb8c35e185a93ca4018dec3b7b04fc0b254bbb6190b455c23696f001c3996ceb102fc22739f34313d112b86823a99d93117dfcda02b3401a

  • SSDEEP

    6144:n3C9BRIG0asYFm71m8+GdkB9yMu7N+8px7K:n3C9uYA71kSMu08px7K

Malware Config

Targets

    • Target

      0ef5a16e05fcf26ace98349932189a10.exe

    • Size

      361KB

    • MD5

      0ef5a16e05fcf26ace98349932189a10

    • SHA1

      3cf823764c97489e83c490eeecd51558ea5bf03c

    • SHA256

      a1ba1ed05a7b7b064cde95533eb97f4c291779ee87817b1e667aa74d1334fc32

    • SHA512

      ed22056fd6661b2bcb8c35e185a93ca4018dec3b7b04fc0b254bbb6190b455c23696f001c3996ceb102fc22739f34313d112b86823a99d93117dfcda02b3401a

    • SSDEEP

      6144:n3C9BRIG0asYFm71m8+GdkB9yMu7N+8px7K:n3C9uYA71kSMu08px7K

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks