General

  • Target

    7d9ad6bea24e3e69afe7fc124efdb0ae54b9df306332e7eafb2c439ed817725fN.exe

  • Size

    454KB

  • Sample

    250108-hw9k9syqfz

  • MD5

    c9767117dcfc4d4d7add8d2c959eb330

  • SHA1

    f84485de41aa0d6352ffad8faeb388eb44439157

  • SHA256

    7d9ad6bea24e3e69afe7fc124efdb0ae54b9df306332e7eafb2c439ed817725f

  • SHA512

    cd187c57bd1d31511ab35c0ba1d157d5a4b11c90d840c07171de50318d616c15ab4fed47f12da56d01e0dc42eb2840f01e7bd40cd21752d87b9a247b63362413

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbej:q7Tc2NYHUrAwfMp3CDj

Malware Config

Targets

    • Target

      7d9ad6bea24e3e69afe7fc124efdb0ae54b9df306332e7eafb2c439ed817725fN.exe

    • Size

      454KB

    • MD5

      c9767117dcfc4d4d7add8d2c959eb330

    • SHA1

      f84485de41aa0d6352ffad8faeb388eb44439157

    • SHA256

      7d9ad6bea24e3e69afe7fc124efdb0ae54b9df306332e7eafb2c439ed817725f

    • SHA512

      cd187c57bd1d31511ab35c0ba1d157d5a4b11c90d840c07171de50318d616c15ab4fed47f12da56d01e0dc42eb2840f01e7bd40cd21752d87b9a247b63362413

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbej:q7Tc2NYHUrAwfMp3CDj

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks