General

  • Target

    f568fe920c9ae0ec8625d5769885091e016ca5fa7878db173ba429ed2c3aef36N.exe

  • Size

    455KB

  • Sample

    250108-h5lwkasjdp

  • MD5

    90863307f046bee34d1c0e42de87ece0

  • SHA1

    200963cea7ea5d2c1c728bfc27cc97833df4ceaa

  • SHA256

    f568fe920c9ae0ec8625d5769885091e016ca5fa7878db173ba429ed2c3aef36

  • SHA512

    54e05ab59efdca7b44ce38be0702030fe92e8c8a53a4a9f563e1ccc7787f10261cc3faae50703dc2266946336b656a285210eaec05a2a090b15f6fc26b3b636b

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeT1:q7Tc2NYHUrAwfMp3CDB

Malware Config

Targets

    • Target

      f568fe920c9ae0ec8625d5769885091e016ca5fa7878db173ba429ed2c3aef36N.exe

    • Size

      455KB

    • MD5

      90863307f046bee34d1c0e42de87ece0

    • SHA1

      200963cea7ea5d2c1c728bfc27cc97833df4ceaa

    • SHA256

      f568fe920c9ae0ec8625d5769885091e016ca5fa7878db173ba429ed2c3aef36

    • SHA512

      54e05ab59efdca7b44ce38be0702030fe92e8c8a53a4a9f563e1ccc7787f10261cc3faae50703dc2266946336b656a285210eaec05a2a090b15f6fc26b3b636b

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeT1:q7Tc2NYHUrAwfMp3CDB

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks