General

  • Target

    9b80cbb712f8f339edeea2ca9ffca2f4dcbbc63d5df33851fd6a5cbe94e04501

  • Size

    456KB

  • Sample

    250108-ft23asxqeq

  • MD5

    c00390ffe08fe7f80627583fff1fc5a8

  • SHA1

    d1b8c757db7c30204294d95adf45be97673659cd

  • SHA256

    9b80cbb712f8f339edeea2ca9ffca2f4dcbbc63d5df33851fd6a5cbe94e04501

  • SHA512

    5c06119e06b960ad3900939ed04ffa8c06c8325751b435854c033bd65b05b90f5c89d3f3b4d9abf976a5f2e01252a93b8f6c246d9a8c514900f23345c8ef7270

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRe:q7Tc2NYHUrAwfMp3CDRe

Malware Config

Targets

    • Target

      9b80cbb712f8f339edeea2ca9ffca2f4dcbbc63d5df33851fd6a5cbe94e04501

    • Size

      456KB

    • MD5

      c00390ffe08fe7f80627583fff1fc5a8

    • SHA1

      d1b8c757db7c30204294d95adf45be97673659cd

    • SHA256

      9b80cbb712f8f339edeea2ca9ffca2f4dcbbc63d5df33851fd6a5cbe94e04501

    • SHA512

      5c06119e06b960ad3900939ed04ffa8c06c8325751b435854c033bd65b05b90f5c89d3f3b4d9abf976a5f2e01252a93b8f6c246d9a8c514900f23345c8ef7270

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRe:q7Tc2NYHUrAwfMp3CDRe

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks