General

  • Target

    34c8a31daeaafee71afc5f47dc11e4eaf92a3c4ec0bd4897921b53cf26f29270.exe

  • Size

    454KB

  • Sample

    250108-fd5s9axkeq

  • MD5

    16a2e1e745f236c7d6273250da2406ec

  • SHA1

    f94dcec3b7a4341f4199845f9d05723963245632

  • SHA256

    34c8a31daeaafee71afc5f47dc11e4eaf92a3c4ec0bd4897921b53cf26f29270

  • SHA512

    52b2cb60bd821ba2755864d19f90e112b29afde8629ef4a371474f848b9555c636fcb7ae9c2fdf86cf3ec585111d002528c98538ab8969db53dc480712dcb583

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbev:q7Tc2NYHUrAwfMp3CDv

Malware Config

Targets

    • Target

      34c8a31daeaafee71afc5f47dc11e4eaf92a3c4ec0bd4897921b53cf26f29270.exe

    • Size

      454KB

    • MD5

      16a2e1e745f236c7d6273250da2406ec

    • SHA1

      f94dcec3b7a4341f4199845f9d05723963245632

    • SHA256

      34c8a31daeaafee71afc5f47dc11e4eaf92a3c4ec0bd4897921b53cf26f29270

    • SHA512

      52b2cb60bd821ba2755864d19f90e112b29afde8629ef4a371474f848b9555c636fcb7ae9c2fdf86cf3ec585111d002528c98538ab8969db53dc480712dcb583

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbev:q7Tc2NYHUrAwfMp3CDv

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks