General

  • Target

    793c269ade5d617bb59832f9230d0f97b808074cacce4f4dedd8c9a524f49bf2N.exe

  • Size

    454KB

  • Sample

    250108-h44d8azkcz

  • MD5

    da76b6e9aaf490136483720361a13bc0

  • SHA1

    c3b189afd2f3defe6c268d08c527a4d325894304

  • SHA256

    793c269ade5d617bb59832f9230d0f97b808074cacce4f4dedd8c9a524f49bf2

  • SHA512

    5d3b603c0d50d2af35d47333ffa6af6450bff09d9e56d6cb15d91aa39061b274fac13c3909162020f4e2d064688c9cbd45b14f1f2a502bd4146a4d75cdd28fd8

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbel:q7Tc2NYHUrAwfMp3CDl

Malware Config

Targets

    • Target

      793c269ade5d617bb59832f9230d0f97b808074cacce4f4dedd8c9a524f49bf2N.exe

    • Size

      454KB

    • MD5

      da76b6e9aaf490136483720361a13bc0

    • SHA1

      c3b189afd2f3defe6c268d08c527a4d325894304

    • SHA256

      793c269ade5d617bb59832f9230d0f97b808074cacce4f4dedd8c9a524f49bf2

    • SHA512

      5d3b603c0d50d2af35d47333ffa6af6450bff09d9e56d6cb15d91aa39061b274fac13c3909162020f4e2d064688c9cbd45b14f1f2a502bd4146a4d75cdd28fd8

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbel:q7Tc2NYHUrAwfMp3CDl

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks