General

  • Target

    7903be46ec1a516fde3c4de7f717ad492c6737d8cd617ad763dcbc72860ae1f5.exe

  • Size

    454KB

  • Sample

    250108-fzpddsxrhk

  • MD5

    f5f7282e9ce775d3d04fca1904b3fe89

  • SHA1

    dc55c75606a69b65ec83966817e3b8b4ee99e8af

  • SHA256

    7903be46ec1a516fde3c4de7f717ad492c6737d8cd617ad763dcbc72860ae1f5

  • SHA512

    1ab10e38776e1056ed9426b1fa58e47f92748f9664bda78f64789c2a269f23091fe2327b7b45d7b8a90c7700d2b815ffc82438217433e488a4b23b82cc649a63

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAber:q7Tc2NYHUrAwfMp3CDr

Malware Config

Targets

    • Target

      7903be46ec1a516fde3c4de7f717ad492c6737d8cd617ad763dcbc72860ae1f5.exe

    • Size

      454KB

    • MD5

      f5f7282e9ce775d3d04fca1904b3fe89

    • SHA1

      dc55c75606a69b65ec83966817e3b8b4ee99e8af

    • SHA256

      7903be46ec1a516fde3c4de7f717ad492c6737d8cd617ad763dcbc72860ae1f5

    • SHA512

      1ab10e38776e1056ed9426b1fa58e47f92748f9664bda78f64789c2a269f23091fe2327b7b45d7b8a90c7700d2b815ffc82438217433e488a4b23b82cc649a63

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAber:q7Tc2NYHUrAwfMp3CDr

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks