General

  • Target

    672450d2c7364dfdee437a9e900733abf9f8079eaca93aeae93d64e022fe9b58.exe

  • Size

    454KB

  • Sample

    250108-h7139szlc1

  • MD5

    75aa1d13efe8ce777c478382731b8c5f

  • SHA1

    8d7bf8d1a58dcb7af52d27ec1b1464148130efe2

  • SHA256

    672450d2c7364dfdee437a9e900733abf9f8079eaca93aeae93d64e022fe9b58

  • SHA512

    5230fa37af838d002b7471a5443b8a12bcd1c573f98e28f4a3983017498aa42468bf3a14f4955822445faa6d274ab4b1ac98514397e7758779ac35413aa31c59

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeG:q7Tc2NYHUrAwfMp3CDG

Malware Config

Targets

    • Target

      672450d2c7364dfdee437a9e900733abf9f8079eaca93aeae93d64e022fe9b58.exe

    • Size

      454KB

    • MD5

      75aa1d13efe8ce777c478382731b8c5f

    • SHA1

      8d7bf8d1a58dcb7af52d27ec1b1464148130efe2

    • SHA256

      672450d2c7364dfdee437a9e900733abf9f8079eaca93aeae93d64e022fe9b58

    • SHA512

      5230fa37af838d002b7471a5443b8a12bcd1c573f98e28f4a3983017498aa42468bf3a14f4955822445faa6d274ab4b1ac98514397e7758779ac35413aa31c59

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeG:q7Tc2NYHUrAwfMp3CDG

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks