General

  • Target

    a8543637e704976244542bbb8d99ac306070c68160a562540ac4b9b101132659N.exe

  • Size

    453KB

  • Sample

    241226-bxnlvstncm

  • MD5

    61b00eb098a5eef8c13c0b6d73b706d0

  • SHA1

    0e9c63fa4b9c74dc77421e2af9cd936173d321c0

  • SHA256

    a8543637e704976244542bbb8d99ac306070c68160a562540ac4b9b101132659

  • SHA512

    81df39cd04a071d7876cd198328a34749d243d05a6ee2232f1e23d0940fb9d691ce116dfdce7d728054a3c021cc48a688c0f94074c1971fd69f1313edd92615e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbel:q7Tc2NYHUrAwfMp3CDl

Malware Config

Targets

    • Target

      a8543637e704976244542bbb8d99ac306070c68160a562540ac4b9b101132659N.exe

    • Size

      453KB

    • MD5

      61b00eb098a5eef8c13c0b6d73b706d0

    • SHA1

      0e9c63fa4b9c74dc77421e2af9cd936173d321c0

    • SHA256

      a8543637e704976244542bbb8d99ac306070c68160a562540ac4b9b101132659

    • SHA512

      81df39cd04a071d7876cd198328a34749d243d05a6ee2232f1e23d0940fb9d691ce116dfdce7d728054a3c021cc48a688c0f94074c1971fd69f1313edd92615e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbel:q7Tc2NYHUrAwfMp3CDl

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks