General

  • Target

    cd4f9b555d0d7c09c68a1d557791831bf993a74c0be2abca0341d6f85bc8c404.exe

  • Size

    453KB

  • Sample

    250108-fvryqavrcs

  • MD5

    435dff2eb7b73e87f73839be5646ccff

  • SHA1

    89da4a3a2f2053c95f9f5a94d8f752a0b186650f

  • SHA256

    cd4f9b555d0d7c09c68a1d557791831bf993a74c0be2abca0341d6f85bc8c404

  • SHA512

    e9610cc48e8bedc56d3af20df3bd2426696edb630990396b1fce1af497528b18d0068fc1e2397190235006321bd7b79a911987170c5cb4c3ee7cad07284eec1b

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbes:q7Tc2NYHUrAwfMp3CDs

Malware Config

Targets

    • Target

      cd4f9b555d0d7c09c68a1d557791831bf993a74c0be2abca0341d6f85bc8c404.exe

    • Size

      453KB

    • MD5

      435dff2eb7b73e87f73839be5646ccff

    • SHA1

      89da4a3a2f2053c95f9f5a94d8f752a0b186650f

    • SHA256

      cd4f9b555d0d7c09c68a1d557791831bf993a74c0be2abca0341d6f85bc8c404

    • SHA512

      e9610cc48e8bedc56d3af20df3bd2426696edb630990396b1fce1af497528b18d0068fc1e2397190235006321bd7b79a911987170c5cb4c3ee7cad07284eec1b

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbes:q7Tc2NYHUrAwfMp3CDs

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks