General

  • Target

    945345a5575d7cda69fa7a7ee7ed7980fd7a7892c16f564e36db00913003c14f.exe

  • Size

    453KB

  • Sample

    250108-h4yhzazkct

  • MD5

    4304bb1ac409f30a064f5c9bd4ee0455

  • SHA1

    543744d7798a3b9d98f4f4c5257011b9d177c32b

  • SHA256

    945345a5575d7cda69fa7a7ee7ed7980fd7a7892c16f564e36db00913003c14f

  • SHA512

    de92ec0bcaf96184c6369058fbed7b287f9a865441007037969d793d1fe2263a407b7a0f66fd76fd6276edff7d634cc2eea5fa42fea86b40ba93b446786ad589

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

Malware Config

Targets

    • Target

      945345a5575d7cda69fa7a7ee7ed7980fd7a7892c16f564e36db00913003c14f.exe

    • Size

      453KB

    • MD5

      4304bb1ac409f30a064f5c9bd4ee0455

    • SHA1

      543744d7798a3b9d98f4f4c5257011b9d177c32b

    • SHA256

      945345a5575d7cda69fa7a7ee7ed7980fd7a7892c16f564e36db00913003c14f

    • SHA512

      de92ec0bcaf96184c6369058fbed7b287f9a865441007037969d793d1fe2263a407b7a0f66fd76fd6276edff7d634cc2eea5fa42fea86b40ba93b446786ad589

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks