General

  • Target

    4eb2226697af23e54ee55c6535502db6a146a764c9c15192dccb75f51e501b5bN.exe

  • Size

    453KB

  • Sample

    250108-fv482svrdt

  • MD5

    1cd2d11a479fcce70fa7024f79190d70

  • SHA1

    046f32c3b9cdc2f18d22da2eaf5d532c6fc01f9f

  • SHA256

    4eb2226697af23e54ee55c6535502db6a146a764c9c15192dccb75f51e501b5b

  • SHA512

    b830e2a3719a2a98f4bdb421292c7087fec95bab7c9c7e2396d575c38503a29719d8f0afc110e0a01bbb6c85067cd0d841b10ed7f92f881663a57acad08d8abb

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbem:q7Tc2NYHUrAwfMp3CDm

Malware Config

Targets

    • Target

      4eb2226697af23e54ee55c6535502db6a146a764c9c15192dccb75f51e501b5bN.exe

    • Size

      453KB

    • MD5

      1cd2d11a479fcce70fa7024f79190d70

    • SHA1

      046f32c3b9cdc2f18d22da2eaf5d532c6fc01f9f

    • SHA256

      4eb2226697af23e54ee55c6535502db6a146a764c9c15192dccb75f51e501b5b

    • SHA512

      b830e2a3719a2a98f4bdb421292c7087fec95bab7c9c7e2396d575c38503a29719d8f0afc110e0a01bbb6c85067cd0d841b10ed7f92f881663a57acad08d8abb

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbem:q7Tc2NYHUrAwfMp3CDm

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks