General

  • Target

    477d04b275b10a9e6d1ebd30b3faa02cecc45d8230fa76cd75aae31bde79f7f1.exe

  • Size

    455KB

  • Sample

    250108-hnxxhaynbw

  • MD5

    8541b5abbbc6731519adf4792938e1a9

  • SHA1

    614fea180fadef344ba6f9caefa89da02a0205e9

  • SHA256

    477d04b275b10a9e6d1ebd30b3faa02cecc45d8230fa76cd75aae31bde79f7f1

  • SHA512

    89243bdc551506a67280a17df38adb066a422fff097e1404d3801c5448eb498cd3a86638ec123d06f24e803d2752b2b9defd952c4a17e21527e62c27a7556006

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTV:q7Tc2NYHUrAwfMp3CDx

Malware Config

Targets

    • Target

      477d04b275b10a9e6d1ebd30b3faa02cecc45d8230fa76cd75aae31bde79f7f1.exe

    • Size

      455KB

    • MD5

      8541b5abbbc6731519adf4792938e1a9

    • SHA1

      614fea180fadef344ba6f9caefa89da02a0205e9

    • SHA256

      477d04b275b10a9e6d1ebd30b3faa02cecc45d8230fa76cd75aae31bde79f7f1

    • SHA512

      89243bdc551506a67280a17df38adb066a422fff097e1404d3801c5448eb498cd3a86638ec123d06f24e803d2752b2b9defd952c4a17e21527e62c27a7556006

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTV:q7Tc2NYHUrAwfMp3CDx

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks