General

  • Target

    7d61cbe866a06446d00d0da50d30b7133650d666f811bd2b0450c63ddc10791cN.exe

  • Size

    454KB

  • Sample

    250108-fdd1javkfz

  • MD5

    b5561afadec14d6f49eb8f4ff97378e0

  • SHA1

    5d8acde359526ddc1290a14c6bdbd2e7e017b0ec

  • SHA256

    7d61cbe866a06446d00d0da50d30b7133650d666f811bd2b0450c63ddc10791c

  • SHA512

    83bfeafd4eb103bfa23c08ef7759e8689ecaff295a4df0bcbe4766ee84d9cee2930982861847bc827591495604104d12ac178fce272eeff55a2707b1d678006b

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

Malware Config

Targets

    • Target

      7d61cbe866a06446d00d0da50d30b7133650d666f811bd2b0450c63ddc10791cN.exe

    • Size

      454KB

    • MD5

      b5561afadec14d6f49eb8f4ff97378e0

    • SHA1

      5d8acde359526ddc1290a14c6bdbd2e7e017b0ec

    • SHA256

      7d61cbe866a06446d00d0da50d30b7133650d666f811bd2b0450c63ddc10791c

    • SHA512

      83bfeafd4eb103bfa23c08ef7759e8689ecaff295a4df0bcbe4766ee84d9cee2930982861847bc827591495604104d12ac178fce272eeff55a2707b1d678006b

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks