General

  • Target

    935a8929a627b568df28eae144d2b09813a02746c926bb4dd22251e62818e46a

  • Size

    333KB

  • Sample

    250108-e8w9xstrhv

  • MD5

    2b077daa7946f570dfb90d208f8a9af8

  • SHA1

    79983f288369cad3e54514e941d837a0b9427c60

  • SHA256

    935a8929a627b568df28eae144d2b09813a02746c926bb4dd22251e62818e46a

  • SHA512

    67e932873d1ecc86788d85af7b7070b2d7bd72daf2ee3d921ac41d6ecc4ba9f6d51539a2b6adf197fb657e4bf41eecc3a25c005ebd59f6d784de395ff4273bfa

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbe2:R4wFHoSHYHUrAwfMp3CD2

Malware Config

Targets

    • Target

      935a8929a627b568df28eae144d2b09813a02746c926bb4dd22251e62818e46a

    • Size

      333KB

    • MD5

      2b077daa7946f570dfb90d208f8a9af8

    • SHA1

      79983f288369cad3e54514e941d837a0b9427c60

    • SHA256

      935a8929a627b568df28eae144d2b09813a02746c926bb4dd22251e62818e46a

    • SHA512

      67e932873d1ecc86788d85af7b7070b2d7bd72daf2ee3d921ac41d6ecc4ba9f6d51539a2b6adf197fb657e4bf41eecc3a25c005ebd59f6d784de395ff4273bfa

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbe2:R4wFHoSHYHUrAwfMp3CD2

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks