General

  • Target

    4ec269b0c4f57e1228ba35934af2d1eea0d1b21435331095679f19b5ed04edc3N.exe

  • Size

    454KB

  • Sample

    250108-hq2cpsyngy

  • MD5

    40b0d7788abc8b51a156734d98697e80

  • SHA1

    311b81ed2dab920991602983ee4359fdc18dd094

  • SHA256

    4ec269b0c4f57e1228ba35934af2d1eea0d1b21435331095679f19b5ed04edc3

  • SHA512

    de6011d0147ec66a5dffc544e4a8da610cf82c423465c862601ccfc27b03314531818db73eeeaaf1912c10d6d53704bf99d5f446077d7b25b82189d514473fc2

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeu:q7Tc2NYHUrAwfMp3CDu

Malware Config

Targets

    • Target

      4ec269b0c4f57e1228ba35934af2d1eea0d1b21435331095679f19b5ed04edc3N.exe

    • Size

      454KB

    • MD5

      40b0d7788abc8b51a156734d98697e80

    • SHA1

      311b81ed2dab920991602983ee4359fdc18dd094

    • SHA256

      4ec269b0c4f57e1228ba35934af2d1eea0d1b21435331095679f19b5ed04edc3

    • SHA512

      de6011d0147ec66a5dffc544e4a8da610cf82c423465c862601ccfc27b03314531818db73eeeaaf1912c10d6d53704bf99d5f446077d7b25b82189d514473fc2

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeu:q7Tc2NYHUrAwfMp3CDu

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks