General

  • Target

    65ced94390059d4729908a3e854acd32420e09254ae20a623383432a290c4264N.exe

  • Size

    454KB

  • Sample

    250108-fypmrswjcv

  • MD5

    8190274ed0aae61bf0ceff12d52faf80

  • SHA1

    33530e7a6b9bec7b308b9c0dc126633a2f0840e4

  • SHA256

    65ced94390059d4729908a3e854acd32420e09254ae20a623383432a290c4264

  • SHA512

    37c93063e1742d8e19c52fa2506419fe70459cd30a835d8cdb151b66e7bf3c8d50d8cc31f1cd16a4d8093d6f6b6c23f5f0256f75fb5ffd67ff991f6abe7d6177

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeM:q7Tc2NYHUrAwfMp3CDM

Malware Config

Targets

    • Target

      65ced94390059d4729908a3e854acd32420e09254ae20a623383432a290c4264N.exe

    • Size

      454KB

    • MD5

      8190274ed0aae61bf0ceff12d52faf80

    • SHA1

      33530e7a6b9bec7b308b9c0dc126633a2f0840e4

    • SHA256

      65ced94390059d4729908a3e854acd32420e09254ae20a623383432a290c4264

    • SHA512

      37c93063e1742d8e19c52fa2506419fe70459cd30a835d8cdb151b66e7bf3c8d50d8cc31f1cd16a4d8093d6f6b6c23f5f0256f75fb5ffd67ff991f6abe7d6177

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeM:q7Tc2NYHUrAwfMp3CDM

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks