General

  • Target

    771bbb504134c549c2ce123d81dd51e6bcfe5f883c6b77a1f9fd867eb17536ca.exe

  • Size

    454KB

  • Sample

    250108-fz5qdayjal

  • MD5

    deffa0fb00b1a806ea59e0b16f85a807

  • SHA1

    35b6fd911434f9af8276b65b7aed0920d949039e

  • SHA256

    771bbb504134c549c2ce123d81dd51e6bcfe5f883c6b77a1f9fd867eb17536ca

  • SHA512

    13b0a68e9de84c4c7a19b45cd06d8d51856a445b5bf474bd519a3cf9ff03b75b4403522a0691f7dd84f64da4fa95a40b6e303b775815ed9539a116d7a20a9555

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbef:q7Tc2NYHUrAwfMp3CDf

Malware Config

Targets

    • Target

      771bbb504134c549c2ce123d81dd51e6bcfe5f883c6b77a1f9fd867eb17536ca.exe

    • Size

      454KB

    • MD5

      deffa0fb00b1a806ea59e0b16f85a807

    • SHA1

      35b6fd911434f9af8276b65b7aed0920d949039e

    • SHA256

      771bbb504134c549c2ce123d81dd51e6bcfe5f883c6b77a1f9fd867eb17536ca

    • SHA512

      13b0a68e9de84c4c7a19b45cd06d8d51856a445b5bf474bd519a3cf9ff03b75b4403522a0691f7dd84f64da4fa95a40b6e303b775815ed9539a116d7a20a9555

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbef:q7Tc2NYHUrAwfMp3CDf

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks