General

  • Target

    6e54bf4c65827f0537c9ee5c8fc2ed9162f4f9cdbb03710b01ca0d57323d398dN.exe

  • Size

    453KB

  • Sample

    250108-e8f8pstrfy

  • MD5

    ad2d4235dbe227c3ff047a30641b16d0

  • SHA1

    964ff3c64e9fbc23648720fb782f4066ab32198f

  • SHA256

    6e54bf4c65827f0537c9ee5c8fc2ed9162f4f9cdbb03710b01ca0d57323d398d

  • SHA512

    8535f773f01e0794ad37eebaa9ba3835b5d7149fc32802934da3de69bf5fb47ee40a8a904304fea8ec5874d14268a3a67cd11bd213171cd3731364ae18dbd477

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeY:q7Tc2NYHUrAwfMp3CDY

Malware Config

Targets

    • Target

      6e54bf4c65827f0537c9ee5c8fc2ed9162f4f9cdbb03710b01ca0d57323d398dN.exe

    • Size

      453KB

    • MD5

      ad2d4235dbe227c3ff047a30641b16d0

    • SHA1

      964ff3c64e9fbc23648720fb782f4066ab32198f

    • SHA256

      6e54bf4c65827f0537c9ee5c8fc2ed9162f4f9cdbb03710b01ca0d57323d398d

    • SHA512

      8535f773f01e0794ad37eebaa9ba3835b5d7149fc32802934da3de69bf5fb47ee40a8a904304fea8ec5874d14268a3a67cd11bd213171cd3731364ae18dbd477

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeY:q7Tc2NYHUrAwfMp3CDY

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks