General

  • Target

    95ce0a75b044c06acd21307f27af281b17ad2113aa4295021cec2fb6d9c6d82d.exe

  • Size

    454KB

  • Sample

    250108-h2r86szjdt

  • MD5

    c13b9cd72959128a35499c01694261eb

  • SHA1

    8f202387ea428641fa629bbc3b90c5fcda895b4f

  • SHA256

    95ce0a75b044c06acd21307f27af281b17ad2113aa4295021cec2fb6d9c6d82d

  • SHA512

    68db9efb599086b26e54702fc5728b9f6492feaff82599cf227e7a60ccaf5fd5dd50a2de43db9d95a5b9a5912f6d964817da212ebf1bc11da2eccf8abbe04be9

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe3:q7Tc2NYHUrAwfMp3CD3

Malware Config

Targets

    • Target

      95ce0a75b044c06acd21307f27af281b17ad2113aa4295021cec2fb6d9c6d82d.exe

    • Size

      454KB

    • MD5

      c13b9cd72959128a35499c01694261eb

    • SHA1

      8f202387ea428641fa629bbc3b90c5fcda895b4f

    • SHA256

      95ce0a75b044c06acd21307f27af281b17ad2113aa4295021cec2fb6d9c6d82d

    • SHA512

      68db9efb599086b26e54702fc5728b9f6492feaff82599cf227e7a60ccaf5fd5dd50a2de43db9d95a5b9a5912f6d964817da212ebf1bc11da2eccf8abbe04be9

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe3:q7Tc2NYHUrAwfMp3CD3

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks