General

  • Target

    68c58848473aa3508106c6210f6fadc44be773360e98a52f4d56e107900088d1.exe

  • Size

    455KB

  • Sample

    250108-fbyxxsvkbs

  • MD5

    943038a73560ff78ef05b937f218278f

  • SHA1

    2eecf08b249735d690f4acfd9ed4ef44944167ea

  • SHA256

    68c58848473aa3508106c6210f6fadc44be773360e98a52f4d56e107900088d1

  • SHA512

    b156faf928deeeafafa3fdb97c54803a75f9350ed1509a8e6a13d537fface76b3b294d049deb2f6f8b76c0361a6b4327152466fc8e8921c12da9b1c652b6e63f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbep:q7Tc2NYHUrAwfMp3CDp

Malware Config

Targets

    • Target

      68c58848473aa3508106c6210f6fadc44be773360e98a52f4d56e107900088d1.exe

    • Size

      455KB

    • MD5

      943038a73560ff78ef05b937f218278f

    • SHA1

      2eecf08b249735d690f4acfd9ed4ef44944167ea

    • SHA256

      68c58848473aa3508106c6210f6fadc44be773360e98a52f4d56e107900088d1

    • SHA512

      b156faf928deeeafafa3fdb97c54803a75f9350ed1509a8e6a13d537fface76b3b294d049deb2f6f8b76c0361a6b4327152466fc8e8921c12da9b1c652b6e63f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbep:q7Tc2NYHUrAwfMp3CDp

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks