General

  • Target

    942dc57914f63c29bc1efe178de3a89fc0d40b1e515f66ed557741562b3807fb

  • Size

    454KB

  • Sample

    250108-fargfsvje1

  • MD5

    5f71df136ebbb111f2d79f0ade7329aa

  • SHA1

    a92386ab1aa8ffbfc8e6fd5fca98e49415d55123

  • SHA256

    942dc57914f63c29bc1efe178de3a89fc0d40b1e515f66ed557741562b3807fb

  • SHA512

    f574d200c7aa0eb9f7d83c021e4fc3bc2c1b5d0a57030cf4016e9243d5a1d747eb009c431e99e46642bca98d437975803d0496171f2e2c442636dd351e41afb7

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbetC:q7Tc2NYHUrAwfMp3CDtC

Malware Config

Targets

    • Target

      942dc57914f63c29bc1efe178de3a89fc0d40b1e515f66ed557741562b3807fb

    • Size

      454KB

    • MD5

      5f71df136ebbb111f2d79f0ade7329aa

    • SHA1

      a92386ab1aa8ffbfc8e6fd5fca98e49415d55123

    • SHA256

      942dc57914f63c29bc1efe178de3a89fc0d40b1e515f66ed557741562b3807fb

    • SHA512

      f574d200c7aa0eb9f7d83c021e4fc3bc2c1b5d0a57030cf4016e9243d5a1d747eb009c431e99e46642bca98d437975803d0496171f2e2c442636dd351e41afb7

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbetC:q7Tc2NYHUrAwfMp3CDtC

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks