General

  • Target

    9d16432aa067ce3a65727bb641165dfd71aca6ec6f22b8f5c401ce20ff1c5aea

  • Size

    454KB

  • Sample

    250108-fzvv6sxrhp

  • MD5

    efec32d39a9f7740b77cc35ddde45fe2

  • SHA1

    84beeea0756d92c37b40bec08251ec31308bed14

  • SHA256

    9d16432aa067ce3a65727bb641165dfd71aca6ec6f22b8f5c401ce20ff1c5aea

  • SHA512

    51e63b5b0fc2ba7b09c70e077291a307ce8a99d5e6d535631f012d9a58c3180629e8eddb19ae02a3caa654fab13c197a6c3002d77d2651349243c6c6fef14c36

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR:q7Tc2NYHUrAwfMp3CDR

Malware Config

Targets

    • Target

      9d16432aa067ce3a65727bb641165dfd71aca6ec6f22b8f5c401ce20ff1c5aea

    • Size

      454KB

    • MD5

      efec32d39a9f7740b77cc35ddde45fe2

    • SHA1

      84beeea0756d92c37b40bec08251ec31308bed14

    • SHA256

      9d16432aa067ce3a65727bb641165dfd71aca6ec6f22b8f5c401ce20ff1c5aea

    • SHA512

      51e63b5b0fc2ba7b09c70e077291a307ce8a99d5e6d535631f012d9a58c3180629e8eddb19ae02a3caa654fab13c197a6c3002d77d2651349243c6c6fef14c36

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR:q7Tc2NYHUrAwfMp3CDR

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks