General

  • Target

    6f8d2ec8f015ebf2ffd47a5661b883a0N.exe

  • Size

    64KB

  • Sample

    240907-e5wtzsvgkg

  • MD5

    6f8d2ec8f015ebf2ffd47a5661b883a0

  • SHA1

    85dbcc238069a0ffa892167b9e71fe66d4c962eb

  • SHA256

    d93e9ea22c67c8a0d974c435e5aac21679247d607fa54eb8cb2831aca08bf0c2

  • SHA512

    167f7e1f6ed61d5123aa4687c4a26dd5efaa660ca3513570fb72677cc024bd9a0683c5ec300e6539a7a7f8615e0c646deb859c9bf7ddd5e54ed07c0674f87fa0

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27Cz:ymb3NkkiQ3mdBjFI9jz

Malware Config

Targets

    • Target

      6f8d2ec8f015ebf2ffd47a5661b883a0N.exe

    • Size

      64KB

    • MD5

      6f8d2ec8f015ebf2ffd47a5661b883a0

    • SHA1

      85dbcc238069a0ffa892167b9e71fe66d4c962eb

    • SHA256

      d93e9ea22c67c8a0d974c435e5aac21679247d607fa54eb8cb2831aca08bf0c2

    • SHA512

      167f7e1f6ed61d5123aa4687c4a26dd5efaa660ca3513570fb72677cc024bd9a0683c5ec300e6539a7a7f8615e0c646deb859c9bf7ddd5e54ed07c0674f87fa0

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27Cz:ymb3NkkiQ3mdBjFI9jz

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks