General

  • Target

    611f52ba32193bdaea0a5d684038c3a50fea24f63d8a9e8a8d8e1c86a518ddf6N.exe

  • Size

    455KB

  • Sample

    250108-fxgwjavrg1

  • MD5

    c1e09b76c22bdd96548348aa8b020850

  • SHA1

    a16534508dd7f6de1cdb0f41a3a0715329bcd139

  • SHA256

    611f52ba32193bdaea0a5d684038c3a50fea24f63d8a9e8a8d8e1c86a518ddf6

  • SHA512

    cdafe84945d2f85a4da5ec272f27f81e205019c35aa46754b1ab25fee418c52731486cbb020183f22198726e760253f0088dd809119f7d3bdf9683c3ca83250a

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTm:q7Tc2NYHUrAwfMp3CDa

Malware Config

Targets

    • Target

      611f52ba32193bdaea0a5d684038c3a50fea24f63d8a9e8a8d8e1c86a518ddf6N.exe

    • Size

      455KB

    • MD5

      c1e09b76c22bdd96548348aa8b020850

    • SHA1

      a16534508dd7f6de1cdb0f41a3a0715329bcd139

    • SHA256

      611f52ba32193bdaea0a5d684038c3a50fea24f63d8a9e8a8d8e1c86a518ddf6

    • SHA512

      cdafe84945d2f85a4da5ec272f27f81e205019c35aa46754b1ab25fee418c52731486cbb020183f22198726e760253f0088dd809119f7d3bdf9683c3ca83250a

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTm:q7Tc2NYHUrAwfMp3CDa

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks