General

  • Target

    3cab76eb376d55fb87696161d8c6d83b3ebb2fd7b213ebd32f158a76a99526c4N.exe

  • Size

    454KB

  • Sample

    250108-h8ddlaskdj

  • MD5

    e52ae1b54d854bfa0476d919f52bb450

  • SHA1

    50dd5b3a3f836b06a0e85ff3678bbe3498f14acf

  • SHA256

    3cab76eb376d55fb87696161d8c6d83b3ebb2fd7b213ebd32f158a76a99526c4

  • SHA512

    7207922407e95427b03d054c4cc5826f04ee9c8da81aa73eaeef24e84bc09bef7af86be72bdfc9d0217306779af451744c14dccb4234b7729720fe07bb4287fb

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeb:q7Tc2NYHUrAwfMp3CDb

Malware Config

Targets

    • Target

      3cab76eb376d55fb87696161d8c6d83b3ebb2fd7b213ebd32f158a76a99526c4N.exe

    • Size

      454KB

    • MD5

      e52ae1b54d854bfa0476d919f52bb450

    • SHA1

      50dd5b3a3f836b06a0e85ff3678bbe3498f14acf

    • SHA256

      3cab76eb376d55fb87696161d8c6d83b3ebb2fd7b213ebd32f158a76a99526c4

    • SHA512

      7207922407e95427b03d054c4cc5826f04ee9c8da81aa73eaeef24e84bc09bef7af86be72bdfc9d0217306779af451744c14dccb4234b7729720fe07bb4287fb

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeb:q7Tc2NYHUrAwfMp3CDb

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks