General

  • Target

    79fda7c0e27915d42046fdb9978b8e8745799778ddcf9fe6c57393da01ff01f9.exe

  • Size

    70KB

  • Sample

    240523-c5t92sbb52

  • MD5

    232b57dd013329dc2bdc881b975bd7d0

  • SHA1

    ad9cca65073dc6205e32f1674d9da1138fbf1505

  • SHA256

    79fda7c0e27915d42046fdb9978b8e8745799778ddcf9fe6c57393da01ff01f9

  • SHA512

    85de9862ebe8af8e753a91142553d01dea706637be97be90d993e70dc6ec59822b3a38fed0f2ac38b87eeea68976cbe2b38d02a242072580b191b91b44d43aa6

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb7tAHEqSCkKWS/:ymb3NkkiQ3mdBjFIynIK/

Malware Config

Targets

    • Target

      79fda7c0e27915d42046fdb9978b8e8745799778ddcf9fe6c57393da01ff01f9.exe

    • Size

      70KB

    • MD5

      232b57dd013329dc2bdc881b975bd7d0

    • SHA1

      ad9cca65073dc6205e32f1674d9da1138fbf1505

    • SHA256

      79fda7c0e27915d42046fdb9978b8e8745799778ddcf9fe6c57393da01ff01f9

    • SHA512

      85de9862ebe8af8e753a91142553d01dea706637be97be90d993e70dc6ec59822b3a38fed0f2ac38b87eeea68976cbe2b38d02a242072580b191b91b44d43aa6

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb7tAHEqSCkKWS/:ymb3NkkiQ3mdBjFIynIK/

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks