General

  • Target

    b598ee7d09544e7669b789c4b41264a84acfe5e9fd7ec9e14740aba2a0c22e80

  • Size

    453KB

  • Sample

    250108-hq7jqa1ncl

  • MD5

    a928d981be5758f52dc4acd851235e1a

  • SHA1

    d0ac2f1604eab0fc20b425356b997d527ce75d71

  • SHA256

    b598ee7d09544e7669b789c4b41264a84acfe5e9fd7ec9e14740aba2a0c22e80

  • SHA512

    a4b37c380c313ed42497e413ad16846ac055a2ff06331b494f378027a07c15afc43e2dce756f77af15457d00d32b946c52abb77fee4e8e78a0d4029bbc5b254c

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe8:q7Tc2NYHUrAwfMp3CD8

Malware Config

Targets

    • Target

      b598ee7d09544e7669b789c4b41264a84acfe5e9fd7ec9e14740aba2a0c22e80

    • Size

      453KB

    • MD5

      a928d981be5758f52dc4acd851235e1a

    • SHA1

      d0ac2f1604eab0fc20b425356b997d527ce75d71

    • SHA256

      b598ee7d09544e7669b789c4b41264a84acfe5e9fd7ec9e14740aba2a0c22e80

    • SHA512

      a4b37c380c313ed42497e413ad16846ac055a2ff06331b494f378027a07c15afc43e2dce756f77af15457d00d32b946c52abb77fee4e8e78a0d4029bbc5b254c

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe8:q7Tc2NYHUrAwfMp3CD8

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks