General

  • Target

    1e91e3de34c991a173e5c75b97b95e6c29dbf773165ae93ce09270c2b677331cN.exe

  • Size

    453KB

  • Sample

    250108-fd1jjaxkek

  • MD5

    2abb4f80eb5c1c6a3f47904cd1357e80

  • SHA1

    4dd5c3f9ebbfc813427157d5903000c1b1afc000

  • SHA256

    1e91e3de34c991a173e5c75b97b95e6c29dbf773165ae93ce09270c2b677331c

  • SHA512

    0e18c35d8c6aa1cabc7fae223b8d120ffa9dda9616f5a1cd1c3cf4524b58a9ef04c8dc7b0c03d5ad9befb39e1fd829d3b20c287fa9ea03723f01eeb00422ab92

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe3j:q7Tc2NYHUrAwfMp3CDT

Malware Config

Targets

    • Target

      1e91e3de34c991a173e5c75b97b95e6c29dbf773165ae93ce09270c2b677331cN.exe

    • Size

      453KB

    • MD5

      2abb4f80eb5c1c6a3f47904cd1357e80

    • SHA1

      4dd5c3f9ebbfc813427157d5903000c1b1afc000

    • SHA256

      1e91e3de34c991a173e5c75b97b95e6c29dbf773165ae93ce09270c2b677331c

    • SHA512

      0e18c35d8c6aa1cabc7fae223b8d120ffa9dda9616f5a1cd1c3cf4524b58a9ef04c8dc7b0c03d5ad9befb39e1fd829d3b20c287fa9ea03723f01eeb00422ab92

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe3j:q7Tc2NYHUrAwfMp3CDT

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks