General

  • Target

    0ea5d76065c232663fd0f9b7cc4e5470.exe

  • Size

    81KB

  • Sample

    240518-myek5afh6v

  • MD5

    0ea5d76065c232663fd0f9b7cc4e5470

  • SHA1

    604e455308479f488d2d48dd34bc4ecb90ee81ad

  • SHA256

    8b1bc13bc3c59bd67ac5f4a546339bb26d8e74bbce3f8e10b7bb45d2615e128e

  • SHA512

    c2a03d5084c670c9cf78e73fb1db5c01100cd9dbb1c112671c83e5b85e586909b68879a30f81e1ee84a957a03dacfd203626ee385d7ed88a659fdb70b4d5b378

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JkZPsv7K:ymb3NkkiQ3mdBjFIWeFGyA9Pf

Malware Config

Targets

    • Target

      0ea5d76065c232663fd0f9b7cc4e5470.exe

    • Size

      81KB

    • MD5

      0ea5d76065c232663fd0f9b7cc4e5470

    • SHA1

      604e455308479f488d2d48dd34bc4ecb90ee81ad

    • SHA256

      8b1bc13bc3c59bd67ac5f4a546339bb26d8e74bbce3f8e10b7bb45d2615e128e

    • SHA512

      c2a03d5084c670c9cf78e73fb1db5c01100cd9dbb1c112671c83e5b85e586909b68879a30f81e1ee84a957a03dacfd203626ee385d7ed88a659fdb70b4d5b378

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JkZPsv7K:ymb3NkkiQ3mdBjFIWeFGyA9Pf

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks