General

  • Target

    74be3723fe374307f091d5a5304f968adb6c687a8e1fd800501631a34336f94eN.exe

  • Size

    455KB

  • Sample

    241113-v79rmawgmj

  • MD5

    8687c3f0e7bfe0dea48b4c20ec73d4a0

  • SHA1

    4384c61fa4fce1e2f27030984ecb01368d5e4618

  • SHA256

    74be3723fe374307f091d5a5304f968adb6c687a8e1fd800501631a34336f94e

  • SHA512

    44ee7301f383d47353e752218e2c053539d9de602ec799c8111b91e86fb3c0e57d679b5ce5e3616e6846b54d088bee31d5d03d93937b316bb80b46e1ef74a249

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRI:q7Tc2NYHUrAwfMp3CDRI

Malware Config

Targets

    • Target

      74be3723fe374307f091d5a5304f968adb6c687a8e1fd800501631a34336f94eN.exe

    • Size

      455KB

    • MD5

      8687c3f0e7bfe0dea48b4c20ec73d4a0

    • SHA1

      4384c61fa4fce1e2f27030984ecb01368d5e4618

    • SHA256

      74be3723fe374307f091d5a5304f968adb6c687a8e1fd800501631a34336f94e

    • SHA512

      44ee7301f383d47353e752218e2c053539d9de602ec799c8111b91e86fb3c0e57d679b5ce5e3616e6846b54d088bee31d5d03d93937b316bb80b46e1ef74a249

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRI:q7Tc2NYHUrAwfMp3CDRI

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks