General

  • Target

    3e277da8a2e0b327d8a362453b8c10899e7ed2194a24f82c56e429508413bfd7.exe

  • Size

    454KB

  • Sample

    250108-h4kbcazkbv

  • MD5

    5dcce293c8672d539d9464cb4464c0db

  • SHA1

    f838a4a67d133146356d901a3c26edd3f327cf4b

  • SHA256

    3e277da8a2e0b327d8a362453b8c10899e7ed2194a24f82c56e429508413bfd7

  • SHA512

    dcf7400a8b29f2dd60102595374e2182541552895bb840d2aad22302c1ca36286a6d4b363084213cbc8d93408751505afb801a02384e686061f1d517cc68a0a4

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

Malware Config

Targets

    • Target

      3e277da8a2e0b327d8a362453b8c10899e7ed2194a24f82c56e429508413bfd7.exe

    • Size

      454KB

    • MD5

      5dcce293c8672d539d9464cb4464c0db

    • SHA1

      f838a4a67d133146356d901a3c26edd3f327cf4b

    • SHA256

      3e277da8a2e0b327d8a362453b8c10899e7ed2194a24f82c56e429508413bfd7

    • SHA512

      dcf7400a8b29f2dd60102595374e2182541552895bb840d2aad22302c1ca36286a6d4b363084213cbc8d93408751505afb801a02384e686061f1d517cc68a0a4

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks