General

  • Target

    64582819ea3273b2a9f89e46ab5ccc45fe1561da12a5027f009be8a19c96136b.exe

  • Size

    456KB

  • Sample

    250108-hs54nsypfz

  • MD5

    57dafcb9a5221926ce4e68b47572a888

  • SHA1

    405191bd498fe83423ae7e495468b7883ca69cf4

  • SHA256

    64582819ea3273b2a9f89e46ab5ccc45fe1561da12a5027f009be8a19c96136b

  • SHA512

    1d71ee5b22b6023b1a2d3ef0df9dc7e1f3948d32713181cc4d9cb0ca1035487f92d4b4863f101ba7fc50fb5941cbc30ad6ab4bee2e61814b835d817ccf9b9f0c

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRz:q7Tc2NYHUrAwfMp3CDRz

Malware Config

Targets

    • Target

      64582819ea3273b2a9f89e46ab5ccc45fe1561da12a5027f009be8a19c96136b.exe

    • Size

      456KB

    • MD5

      57dafcb9a5221926ce4e68b47572a888

    • SHA1

      405191bd498fe83423ae7e495468b7883ca69cf4

    • SHA256

      64582819ea3273b2a9f89e46ab5ccc45fe1561da12a5027f009be8a19c96136b

    • SHA512

      1d71ee5b22b6023b1a2d3ef0df9dc7e1f3948d32713181cc4d9cb0ca1035487f92d4b4863f101ba7fc50fb5941cbc30ad6ab4bee2e61814b835d817ccf9b9f0c

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRz:q7Tc2NYHUrAwfMp3CDRz

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks