General

  • Target

    bc08bf5a92aded95c8a3e91c0d621dd5e9acd7da4492234afb3e5c6343424ae0

  • Size

    457KB

  • Sample

    250108-h38bsazkas

  • MD5

    86c46493d9d3bb1e05562b6e62ce3c6d

  • SHA1

    7b41234680b1c6bbcc94cf8b4e4a788d35079220

  • SHA256

    bc08bf5a92aded95c8a3e91c0d621dd5e9acd7da4492234afb3e5c6343424ae0

  • SHA512

    d05862a2df3bf9d2e6f3458da6f2d45ccf1f76dae18e03972a328cedc0653dac9d298ea4f27239cd46c707c7134fc49a75f95d4ac8ecac31e2955c133b21eed8

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRl:q7Tc2NYHUrAwfMp3CDRl

Malware Config

Targets

    • Target

      bc08bf5a92aded95c8a3e91c0d621dd5e9acd7da4492234afb3e5c6343424ae0

    • Size

      457KB

    • MD5

      86c46493d9d3bb1e05562b6e62ce3c6d

    • SHA1

      7b41234680b1c6bbcc94cf8b4e4a788d35079220

    • SHA256

      bc08bf5a92aded95c8a3e91c0d621dd5e9acd7da4492234afb3e5c6343424ae0

    • SHA512

      d05862a2df3bf9d2e6f3458da6f2d45ccf1f76dae18e03972a328cedc0653dac9d298ea4f27239cd46c707c7134fc49a75f95d4ac8ecac31e2955c133b21eed8

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRl:q7Tc2NYHUrAwfMp3CDRl

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks