General

  • Target

    bb09e7ffffe63b15bb9255d6f26114698cb471c5db50ac76325e17f76cfa6f6c

  • Size

    457KB

  • Sample

    250108-h1mmas1rcj

  • MD5

    29f398db199413059046227728a5e04f

  • SHA1

    3a63536dfe9aa33275ee630e418767cf54b0f44f

  • SHA256

    bb09e7ffffe63b15bb9255d6f26114698cb471c5db50ac76325e17f76cfa6f6c

  • SHA512

    ffd15ab5ca0b75e92109c41cf26f8cd95c61f5516e0967ac45c9a67f717592031a613038dd896b54049e84bbb010ede081489ea093519eea702640e8e4156de6

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRw4:q7Tc2NYHUrAwfMp3CDRw4

Malware Config

Targets

    • Target

      bb09e7ffffe63b15bb9255d6f26114698cb471c5db50ac76325e17f76cfa6f6c

    • Size

      457KB

    • MD5

      29f398db199413059046227728a5e04f

    • SHA1

      3a63536dfe9aa33275ee630e418767cf54b0f44f

    • SHA256

      bb09e7ffffe63b15bb9255d6f26114698cb471c5db50ac76325e17f76cfa6f6c

    • SHA512

      ffd15ab5ca0b75e92109c41cf26f8cd95c61f5516e0967ac45c9a67f717592031a613038dd896b54049e84bbb010ede081489ea093519eea702640e8e4156de6

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRw4:q7Tc2NYHUrAwfMp3CDRw4

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks