General

  • Target

    0e172532d70cdd8b41f3f1995e2f9671eee5b82eb23658d5456d23e6105fafb7.exe

  • Size

    454KB

  • Sample

    250108-h5z37asjfj

  • MD5

    3924396d3afe4570f09e2419b4203000

  • SHA1

    505e7f8dcd61dc7259e53569fc07bf408685da53

  • SHA256

    0e172532d70cdd8b41f3f1995e2f9671eee5b82eb23658d5456d23e6105fafb7

  • SHA512

    b1019c53afc239ed7fb72b48743ced645d0354ebedcf7f3d82f4d348dbb1dbea78b4458ebb770be9242fe288f1a7a63e3f02cd1c123c01e6b2db8e916d50071e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbei:q7Tc2NYHUrAwfMp3CDi

Malware Config

Targets

    • Target

      0e172532d70cdd8b41f3f1995e2f9671eee5b82eb23658d5456d23e6105fafb7.exe

    • Size

      454KB

    • MD5

      3924396d3afe4570f09e2419b4203000

    • SHA1

      505e7f8dcd61dc7259e53569fc07bf408685da53

    • SHA256

      0e172532d70cdd8b41f3f1995e2f9671eee5b82eb23658d5456d23e6105fafb7

    • SHA512

      b1019c53afc239ed7fb72b48743ced645d0354ebedcf7f3d82f4d348dbb1dbea78b4458ebb770be9242fe288f1a7a63e3f02cd1c123c01e6b2db8e916d50071e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbei:q7Tc2NYHUrAwfMp3CDi

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks