General

  • Target

    b8fdca5287446977734c68191fd87f691fba0f6ff2c95d668d0756cbee0b6603

  • Size

    455KB

  • Sample

    250108-hwbn8s1pfp

  • MD5

    888eca5c1070d1d5c29f5b547d6c37c2

  • SHA1

    12493d3e30b1e9492ebdb9306ac994f9b4765c40

  • SHA256

    b8fdca5287446977734c68191fd87f691fba0f6ff2c95d668d0756cbee0b6603

  • SHA512

    df6fa8b9828e45507003841e8cae145bdbf6bcab4f4c57d601dd1a5c1813f9b4ec5162d356b9a434c5d187a8ee4e249888623963faaf9e55ce275a3887b4b262

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbet:q7Tc2NYHUrAwfMp3CDt

Malware Config

Targets

    • Target

      b8fdca5287446977734c68191fd87f691fba0f6ff2c95d668d0756cbee0b6603

    • Size

      455KB

    • MD5

      888eca5c1070d1d5c29f5b547d6c37c2

    • SHA1

      12493d3e30b1e9492ebdb9306ac994f9b4765c40

    • SHA256

      b8fdca5287446977734c68191fd87f691fba0f6ff2c95d668d0756cbee0b6603

    • SHA512

      df6fa8b9828e45507003841e8cae145bdbf6bcab4f4c57d601dd1a5c1813f9b4ec5162d356b9a434c5d187a8ee4e249888623963faaf9e55ce275a3887b4b262

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbet:q7Tc2NYHUrAwfMp3CDt

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks