General

  • Target

    719f299931f655025333acf8f1072c05ed54741822134f6479d9ad889ba4a607.exe

  • Size

    454KB

  • Sample

    250108-e9pw8swrem

  • MD5

    004b666e16e39a56f71de2f4c7eaeef2

  • SHA1

    9fa2ef8493ec383afd92712e4cf2242fcb49011f

  • SHA256

    719f299931f655025333acf8f1072c05ed54741822134f6479d9ad889ba4a607

  • SHA512

    776fb216d4ea57bcab309b2921df69bbdbb82080ba1ab8d2e8cf6b9a5883dbe2ffe8010994a5a99fd4811598cfdab7b10f3ac66ae7f31b6d195e7a4b531cd7d5

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTi:q7Tc2NYHUrAwfMp3CDO

Malware Config

Targets

    • Target

      719f299931f655025333acf8f1072c05ed54741822134f6479d9ad889ba4a607.exe

    • Size

      454KB

    • MD5

      004b666e16e39a56f71de2f4c7eaeef2

    • SHA1

      9fa2ef8493ec383afd92712e4cf2242fcb49011f

    • SHA256

      719f299931f655025333acf8f1072c05ed54741822134f6479d9ad889ba4a607

    • SHA512

      776fb216d4ea57bcab309b2921df69bbdbb82080ba1ab8d2e8cf6b9a5883dbe2ffe8010994a5a99fd4811598cfdab7b10f3ac66ae7f31b6d195e7a4b531cd7d5

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTi:q7Tc2NYHUrAwfMp3CDO

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks