General

  • Target

    be686cd7e764701638e7fad2b6207756c62a12904c9b49d5697c16de718e3f59

  • Size

    454KB

  • Sample

    250108-h9rmlszlhy

  • MD5

    077a90a0acacb4e6ae62b1f89f6a5a9c

  • SHA1

    a40c636cb09249a0e5ea47909dd52c95cdd228f5

  • SHA256

    be686cd7e764701638e7fad2b6207756c62a12904c9b49d5697c16de718e3f59

  • SHA512

    d23d7773dddbd7e2e3f9da9ef4ae8e5031493b3243e02219af35d4ceababa70dab1f445099f5e6cfbd877223de4c42f99c4db4731f8c3b0ed9ae2941ead07069

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbes:q7Tc2NYHUrAwfMp3CDs

Malware Config

Targets

    • Target

      be686cd7e764701638e7fad2b6207756c62a12904c9b49d5697c16de718e3f59

    • Size

      454KB

    • MD5

      077a90a0acacb4e6ae62b1f89f6a5a9c

    • SHA1

      a40c636cb09249a0e5ea47909dd52c95cdd228f5

    • SHA256

      be686cd7e764701638e7fad2b6207756c62a12904c9b49d5697c16de718e3f59

    • SHA512

      d23d7773dddbd7e2e3f9da9ef4ae8e5031493b3243e02219af35d4ceababa70dab1f445099f5e6cfbd877223de4c42f99c4db4731f8c3b0ed9ae2941ead07069

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbes:q7Tc2NYHUrAwfMp3CDs

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks