General

  • Target

    e95090ef533d9ffe70c817da23c18ec8df17c1c554d3a9eaf05c1f15e24ac1ad.exe

  • Size

    454KB

  • Sample

    250108-fykc2sxrer

  • MD5

    81e3959b60b73d25ac79e22ed38b4b5f

  • SHA1

    0735eddf4305b979e8fcd934005d62c22ac41ab6

  • SHA256

    e95090ef533d9ffe70c817da23c18ec8df17c1c554d3a9eaf05c1f15e24ac1ad

  • SHA512

    db79ae6c4af41ae884f90c079702b3680b0ba600752471531255e95f6ee780e680a82d3c1d7f25202f097ef23578297533c139392869f66ec4a98da390ad6e29

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeW:q7Tc2NYHUrAwfMp3CDW

Malware Config

Targets

    • Target

      e95090ef533d9ffe70c817da23c18ec8df17c1c554d3a9eaf05c1f15e24ac1ad.exe

    • Size

      454KB

    • MD5

      81e3959b60b73d25ac79e22ed38b4b5f

    • SHA1

      0735eddf4305b979e8fcd934005d62c22ac41ab6

    • SHA256

      e95090ef533d9ffe70c817da23c18ec8df17c1c554d3a9eaf05c1f15e24ac1ad

    • SHA512

      db79ae6c4af41ae884f90c079702b3680b0ba600752471531255e95f6ee780e680a82d3c1d7f25202f097ef23578297533c139392869f66ec4a98da390ad6e29

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeW:q7Tc2NYHUrAwfMp3CDW

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks