General

  • Target

    78ca8635cd1f0fef69a3a8b6d209720123e15be14274de2e5dfd71662e5752a3.exe

  • Size

    453KB

  • Sample

    241225-z7k6gsxrcy

  • MD5

    dc8c26447520c37deb9e094975c04789

  • SHA1

    bf5e02804da24184a3801e374d67e619057b3952

  • SHA256

    78ca8635cd1f0fef69a3a8b6d209720123e15be14274de2e5dfd71662e5752a3

  • SHA512

    fd6f4724182b1072e337f8fd6a2d52a6c7087e7f21cb2a9b5872049c473d0bca3f3c9c14a135765f5645f5d95674456c1a506807c2ef48050d24f5bc6f1921cb

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeA:q7Tc2NYHUrAwfMp3CDA

Malware Config

Targets

    • Target

      78ca8635cd1f0fef69a3a8b6d209720123e15be14274de2e5dfd71662e5752a3.exe

    • Size

      453KB

    • MD5

      dc8c26447520c37deb9e094975c04789

    • SHA1

      bf5e02804da24184a3801e374d67e619057b3952

    • SHA256

      78ca8635cd1f0fef69a3a8b6d209720123e15be14274de2e5dfd71662e5752a3

    • SHA512

      fd6f4724182b1072e337f8fd6a2d52a6c7087e7f21cb2a9b5872049c473d0bca3f3c9c14a135765f5645f5d95674456c1a506807c2ef48050d24f5bc6f1921cb

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeA:q7Tc2NYHUrAwfMp3CDA

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks