General

  • Target

    3f183dfe42ce6ff4960703b8fae46ee19e397350693b0c99b517f1b4130c30a4N.exe

  • Size

    454KB

  • Sample

    250108-h5kcqszkdz

  • MD5

    14212bad49ca961294ff529352ce04d0

  • SHA1

    11075a36e992b186eb30523e16cf418909060db2

  • SHA256

    3f183dfe42ce6ff4960703b8fae46ee19e397350693b0c99b517f1b4130c30a4

  • SHA512

    f5efcc2b1161c94f99bec35897a16558a3e3a735588b8ac064d308e8c6fc99c7ee4027066c186b1b847487be73f8a291a7a6be0892023b5002f2f9e76b6da291

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeV:q7Tc2NYHUrAwfMp3CDV

Malware Config

Targets

    • Target

      3f183dfe42ce6ff4960703b8fae46ee19e397350693b0c99b517f1b4130c30a4N.exe

    • Size

      454KB

    • MD5

      14212bad49ca961294ff529352ce04d0

    • SHA1

      11075a36e992b186eb30523e16cf418909060db2

    • SHA256

      3f183dfe42ce6ff4960703b8fae46ee19e397350693b0c99b517f1b4130c30a4

    • SHA512

      f5efcc2b1161c94f99bec35897a16558a3e3a735588b8ac064d308e8c6fc99c7ee4027066c186b1b847487be73f8a291a7a6be0892023b5002f2f9e76b6da291

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeV:q7Tc2NYHUrAwfMp3CDV

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks