General

  • Target

    bc10936dcca187c39a8077ce1205c3e4606303e5bca295f558e792bea9b71b60

  • Size

    455KB

  • Sample

    250108-h4kbcasjan

  • MD5

    a3319195a96a1f367235b029c9b53f12

  • SHA1

    2f991103478d9f7848269830d97f2f72d9900b88

  • SHA256

    bc10936dcca187c39a8077ce1205c3e4606303e5bca295f558e792bea9b71b60

  • SHA512

    c943099f8fee9cce1365f2b0e7c64480828170f6b8efffce1d846778c1398363b3f94d286a780bf53d57280bccd3f2edc93b9a7a84276a62842b0824348db9a2

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTf:q7Tc2NYHUrAwfMp3CDz

Malware Config

Targets

    • Target

      bc10936dcca187c39a8077ce1205c3e4606303e5bca295f558e792bea9b71b60

    • Size

      455KB

    • MD5

      a3319195a96a1f367235b029c9b53f12

    • SHA1

      2f991103478d9f7848269830d97f2f72d9900b88

    • SHA256

      bc10936dcca187c39a8077ce1205c3e4606303e5bca295f558e792bea9b71b60

    • SHA512

      c943099f8fee9cce1365f2b0e7c64480828170f6b8efffce1d846778c1398363b3f94d286a780bf53d57280bccd3f2edc93b9a7a84276a62842b0824348db9a2

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTf:q7Tc2NYHUrAwfMp3CDz

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks