General

  • Target

    55560003645bd14047ef325761c02e34b4ecbcc5a6a8ab4cbe6fc7fd1bbe59c5.exe

  • Size

    454KB

  • Sample

    250108-ff5w2avlfs

  • MD5

    aeb3c190dac5971025d1b8f4a57c12e4

  • SHA1

    ad59702b6b3d3173081336020e60cd13247a119b

  • SHA256

    55560003645bd14047ef325761c02e34b4ecbcc5a6a8ab4cbe6fc7fd1bbe59c5

  • SHA512

    b56e49646a006fa22e6fde9852c8181c11c972e50ab361a559433804da71c54497d02ce3fd21d3498a770a2cb2693cb79b5ef77313c2f959068272abc9a0ef84

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbes:q7Tc2NYHUrAwfMp3CDs

Malware Config

Targets

    • Target

      55560003645bd14047ef325761c02e34b4ecbcc5a6a8ab4cbe6fc7fd1bbe59c5.exe

    • Size

      454KB

    • MD5

      aeb3c190dac5971025d1b8f4a57c12e4

    • SHA1

      ad59702b6b3d3173081336020e60cd13247a119b

    • SHA256

      55560003645bd14047ef325761c02e34b4ecbcc5a6a8ab4cbe6fc7fd1bbe59c5

    • SHA512

      b56e49646a006fa22e6fde9852c8181c11c972e50ab361a559433804da71c54497d02ce3fd21d3498a770a2cb2693cb79b5ef77313c2f959068272abc9a0ef84

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbes:q7Tc2NYHUrAwfMp3CDs

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks