General

  • Target

    5d8a44cbfa8188ce840306c798b2e1d0.exe

  • Size

    58KB

  • Sample

    240518-nh27xsha73

  • MD5

    5d8a44cbfa8188ce840306c798b2e1d0

  • SHA1

    c1eccfb81f80dabe36a8a7c93b5b1664941b7cff

  • SHA256

    a4acb2d2da712bd49ee53938d9b08b3c002163647681827c727702483e6df243

  • SHA512

    05cc392b86cdb34106ff9046c6c0de2a768a59e460d1fef462a0ecbe30bb4c352a28f7cdc282ef3933a551a68249a68b714e1bab5fdbf37c89821313105b711c

  • SSDEEP

    1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNG1mjtREVMHr:khOmTsF93UYfwC6GIoutpY918ckr

Malware Config

Targets

    • Target

      5d8a44cbfa8188ce840306c798b2e1d0.exe

    • Size

      58KB

    • MD5

      5d8a44cbfa8188ce840306c798b2e1d0

    • SHA1

      c1eccfb81f80dabe36a8a7c93b5b1664941b7cff

    • SHA256

      a4acb2d2da712bd49ee53938d9b08b3c002163647681827c727702483e6df243

    • SHA512

      05cc392b86cdb34106ff9046c6c0de2a768a59e460d1fef462a0ecbe30bb4c352a28f7cdc282ef3933a551a68249a68b714e1bab5fdbf37c89821313105b711c

    • SSDEEP

      1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNG1mjtREVMHr:khOmTsF93UYfwC6GIoutpY918ckr

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks