General

  • Target

    dfb4f81947725ada6dc340761eeafe9ee3f5eaf1a3c73d13702d4ee1b6542ec0N.exe

  • Size

    454KB

  • Sample

    250108-fthzesvqgx

  • MD5

    97527d2e68ad3c118971cfaecafc1f70

  • SHA1

    a886d25d1f2b020a8614d32813fe3ce97c391269

  • SHA256

    dfb4f81947725ada6dc340761eeafe9ee3f5eaf1a3c73d13702d4ee1b6542ec0

  • SHA512

    fc58fc8bdf91c76fafe1f7af49f4447bab47ba22415860a5b9b23c615df2357aa325fb6d7e73690acc68a0e04d5c8ed13f74ebd356ad1c39c88ee1b285dd29c3

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbedh:q7Tc2NYHUrAwfMp3CDdh

Malware Config

Targets

    • Target

      dfb4f81947725ada6dc340761eeafe9ee3f5eaf1a3c73d13702d4ee1b6542ec0N.exe

    • Size

      454KB

    • MD5

      97527d2e68ad3c118971cfaecafc1f70

    • SHA1

      a886d25d1f2b020a8614d32813fe3ce97c391269

    • SHA256

      dfb4f81947725ada6dc340761eeafe9ee3f5eaf1a3c73d13702d4ee1b6542ec0

    • SHA512

      fc58fc8bdf91c76fafe1f7af49f4447bab47ba22415860a5b9b23c615df2357aa325fb6d7e73690acc68a0e04d5c8ed13f74ebd356ad1c39c88ee1b285dd29c3

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbedh:q7Tc2NYHUrAwfMp3CDdh

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks