General

  • Target

    b2790c14fba2e7b6c70b41073012a608d4229d3e4fc8237ed4459ba3d70b95ec.exe

  • Size

    454KB

  • Sample

    250108-fanqkaxjam

  • MD5

    8576824bb717d5b1a6001be29b54fbdd

  • SHA1

    7c9b3a80321cb39470216c54d8e72378917dcb42

  • SHA256

    b2790c14fba2e7b6c70b41073012a608d4229d3e4fc8237ed4459ba3d70b95ec

  • SHA512

    ce34d1cb5e24196240898ef1955fc8a608a99946084e385422462316bd449909d796f3d57c35e77d6626308415133f3d6f4763ad84e925263367132dd5f8ecc0

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe1Z:q7Tc2NYHUrAwfMp3CD1Z

Malware Config

Targets

    • Target

      b2790c14fba2e7b6c70b41073012a608d4229d3e4fc8237ed4459ba3d70b95ec.exe

    • Size

      454KB

    • MD5

      8576824bb717d5b1a6001be29b54fbdd

    • SHA1

      7c9b3a80321cb39470216c54d8e72378917dcb42

    • SHA256

      b2790c14fba2e7b6c70b41073012a608d4229d3e4fc8237ed4459ba3d70b95ec

    • SHA512

      ce34d1cb5e24196240898ef1955fc8a608a99946084e385422462316bd449909d796f3d57c35e77d6626308415133f3d6f4763ad84e925263367132dd5f8ecc0

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe1Z:q7Tc2NYHUrAwfMp3CD1Z

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks