General

  • Target

    2ab04a532bac7b7553dd0abe301841caaef04516a5b96bdd133bc38e87932248.exe

  • Size

    454KB

  • Sample

    250108-hvbb3s1pcm

  • MD5

    e1cc46a123683278f954a6bf39df7d9b

  • SHA1

    20c218745fe27077d1f0f47d8296edd05efec0e3

  • SHA256

    2ab04a532bac7b7553dd0abe301841caaef04516a5b96bdd133bc38e87932248

  • SHA512

    71012f33865186d6211a923cf812bbddbf48705e0913e48557b86bde80cb510d5d2e0b24d763eea08f8ee2e1a6d319bf0cee87112a3e9684c17d1e963188092f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe+:q7Tc2NYHUrAwfMp3CD+

Malware Config

Targets

    • Target

      2ab04a532bac7b7553dd0abe301841caaef04516a5b96bdd133bc38e87932248.exe

    • Size

      454KB

    • MD5

      e1cc46a123683278f954a6bf39df7d9b

    • SHA1

      20c218745fe27077d1f0f47d8296edd05efec0e3

    • SHA256

      2ab04a532bac7b7553dd0abe301841caaef04516a5b96bdd133bc38e87932248

    • SHA512

      71012f33865186d6211a923cf812bbddbf48705e0913e48557b86bde80cb510d5d2e0b24d763eea08f8ee2e1a6d319bf0cee87112a3e9684c17d1e963188092f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe+:q7Tc2NYHUrAwfMp3CD+

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks