General

  • Target

    9523a8cba36c69b344bec18b98c3e1f3fa58d36c96f1473b1ad612a7a88d7bcf

  • Size

    454KB

  • Sample

    250108-fdgfnaxkck

  • MD5

    93b8dfa524c3fe13c4e7a08b81d81525

  • SHA1

    62dd9ca0d9b5e1f1fa49c6757e424d5dcaaf5a1b

  • SHA256

    9523a8cba36c69b344bec18b98c3e1f3fa58d36c96f1473b1ad612a7a88d7bcf

  • SHA512

    60241be62b58b10c25f2870af9999b8305e0a1b0956e902c771640f9cf090a13a8476bae4c13f9e92ac5e4265d9b30dcc6608d27f27cb3be1ef6fcf887bc77f4

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeA:q7Tc2NYHUrAwfMp3CDA

Malware Config

Targets

    • Target

      9523a8cba36c69b344bec18b98c3e1f3fa58d36c96f1473b1ad612a7a88d7bcf

    • Size

      454KB

    • MD5

      93b8dfa524c3fe13c4e7a08b81d81525

    • SHA1

      62dd9ca0d9b5e1f1fa49c6757e424d5dcaaf5a1b

    • SHA256

      9523a8cba36c69b344bec18b98c3e1f3fa58d36c96f1473b1ad612a7a88d7bcf

    • SHA512

      60241be62b58b10c25f2870af9999b8305e0a1b0956e902c771640f9cf090a13a8476bae4c13f9e92ac5e4265d9b30dcc6608d27f27cb3be1ef6fcf887bc77f4

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeA:q7Tc2NYHUrAwfMp3CDA

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks