General

  • Target

    61099c0319294b53cc570dbc5c69d8990aa5348474555ca843fe4c15caa964fbN.exe

  • Size

    455KB

  • Sample

    250108-fga32sxlcl

  • MD5

    7b9f076e1fc3f8ed32143804860258d0

  • SHA1

    c21ce56ea1f036460d4db1d73ea732fbd0580ba9

  • SHA256

    61099c0319294b53cc570dbc5c69d8990aa5348474555ca843fe4c15caa964fb

  • SHA512

    3b2bfc91266a2a77af4a6ac36c7cd166bbc8162b66441283d66a104ced624d6666efd77165d36e8b151fe94ebd185943557442ca3bb472ff992d48a427d9a6f4

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeW:q7Tc2NYHUrAwfMp3CDW

Malware Config

Targets

    • Target

      61099c0319294b53cc570dbc5c69d8990aa5348474555ca843fe4c15caa964fbN.exe

    • Size

      455KB

    • MD5

      7b9f076e1fc3f8ed32143804860258d0

    • SHA1

      c21ce56ea1f036460d4db1d73ea732fbd0580ba9

    • SHA256

      61099c0319294b53cc570dbc5c69d8990aa5348474555ca843fe4c15caa964fb

    • SHA512

      3b2bfc91266a2a77af4a6ac36c7cd166bbc8162b66441283d66a104ced624d6666efd77165d36e8b151fe94ebd185943557442ca3bb472ff992d48a427d9a6f4

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeW:q7Tc2NYHUrAwfMp3CDW

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks