General

  • Target

    e24967b8599fdc4ad3070966261a04cf4b3d1d10ea81aecba7752cb791763705N.exe

  • Size

    454KB

  • Sample

    250108-fyvh1sxrfp

  • MD5

    3c7010ceb735804ad5e9b2e6d1089a70

  • SHA1

    e58984887c1d1c4a4e5d8d66abb18889b9448b18

  • SHA256

    e24967b8599fdc4ad3070966261a04cf4b3d1d10ea81aecba7752cb791763705

  • SHA512

    b5a98e3e2e45423b66a7827444ffb3410c4edc545a7d041bbd075f24a95bd27a6befac1ca8fe53e38f6f4caa61284d702cd41687514864cb022be77cab2f7cd2

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeq:q7Tc2NYHUrAwfMp3CDq

Malware Config

Targets

    • Target

      e24967b8599fdc4ad3070966261a04cf4b3d1d10ea81aecba7752cb791763705N.exe

    • Size

      454KB

    • MD5

      3c7010ceb735804ad5e9b2e6d1089a70

    • SHA1

      e58984887c1d1c4a4e5d8d66abb18889b9448b18

    • SHA256

      e24967b8599fdc4ad3070966261a04cf4b3d1d10ea81aecba7752cb791763705

    • SHA512

      b5a98e3e2e45423b66a7827444ffb3410c4edc545a7d041bbd075f24a95bd27a6befac1ca8fe53e38f6f4caa61284d702cd41687514864cb022be77cab2f7cd2

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeq:q7Tc2NYHUrAwfMp3CDq

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks