General

  • Target

    bf6b70550f6fd4bec9ef0d6e87e5fd71453a9863b3c760dd4323348430a54bde.exe

  • Size

    454KB

  • Sample

    250108-hwk8nsyqet

  • MD5

    7ca086ea0478ff74c9ed63f563877a7f

  • SHA1

    8e1c4687b8f6bdb64d33d018ffca1e0a8d40692a

  • SHA256

    bf6b70550f6fd4bec9ef0d6e87e5fd71453a9863b3c760dd4323348430a54bde

  • SHA512

    eeec578ac5c6fd163954f0174591b649ace028d60c605e5238d0183ec0042748dfe766124e635de5df920cc93c497df4dba2397da2760aa1229078f83dd286e8

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeN:q7Tc2NYHUrAwfMp3CDN

Malware Config

Targets

    • Target

      bf6b70550f6fd4bec9ef0d6e87e5fd71453a9863b3c760dd4323348430a54bde.exe

    • Size

      454KB

    • MD5

      7ca086ea0478ff74c9ed63f563877a7f

    • SHA1

      8e1c4687b8f6bdb64d33d018ffca1e0a8d40692a

    • SHA256

      bf6b70550f6fd4bec9ef0d6e87e5fd71453a9863b3c760dd4323348430a54bde

    • SHA512

      eeec578ac5c6fd163954f0174591b649ace028d60c605e5238d0183ec0042748dfe766124e635de5df920cc93c497df4dba2397da2760aa1229078f83dd286e8

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeN:q7Tc2NYHUrAwfMp3CDN

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks