General

  • Target

    86b75aa205cc9a8b086dc79d9d76f08260fbec4daceaf8245f274f46c6545a15N.exe

  • Size

    456KB

  • Sample

    241225-s72d5sxkdt

  • MD5

    abc45e7e40bded452877935ebac8a4f0

  • SHA1

    777244ab61d2fcb45f499325cc8e615aafe55560

  • SHA256

    86b75aa205cc9a8b086dc79d9d76f08260fbec4daceaf8245f274f46c6545a15

  • SHA512

    bbda582bbaff8c3fa546bebaff30223bc84b8539104c40b53bd91fd31f346c04c6f89048c4e991aa9eee9a19dd03d8766b6a775b5b52aa301d15e18cd87138c4

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRl:q7Tc2NYHUrAwfMp3CDRl

Malware Config

Targets

    • Target

      86b75aa205cc9a8b086dc79d9d76f08260fbec4daceaf8245f274f46c6545a15N.exe

    • Size

      456KB

    • MD5

      abc45e7e40bded452877935ebac8a4f0

    • SHA1

      777244ab61d2fcb45f499325cc8e615aafe55560

    • SHA256

      86b75aa205cc9a8b086dc79d9d76f08260fbec4daceaf8245f274f46c6545a15

    • SHA512

      bbda582bbaff8c3fa546bebaff30223bc84b8539104c40b53bd91fd31f346c04c6f89048c4e991aa9eee9a19dd03d8766b6a775b5b52aa301d15e18cd87138c4

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRl:q7Tc2NYHUrAwfMp3CDRl

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks