General

  • Target

    7b2103c8725467b5bf34174b5360d80f9f08f1715a0a2d32193c56521c4e3ac8N.exe

  • Size

    454KB

  • Sample

    250108-hxfdta1qaj

  • MD5

    72d1bd4f5c5a9ddfa52d32d7dc524610

  • SHA1

    912217b6167ab8fc1ced5bb73180b95a6acd32d4

  • SHA256

    7b2103c8725467b5bf34174b5360d80f9f08f1715a0a2d32193c56521c4e3ac8

  • SHA512

    6d994d7a0cf0440097ff259d47f04303b61205db7dad541127f18681afcad65f85e4b7ba11a068d0c2f148a63562d9b670dd06f7a8d7037fbc4a4f0423762341

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeO:q7Tc2NYHUrAwfMp3CDO

Malware Config

Targets

    • Target

      7b2103c8725467b5bf34174b5360d80f9f08f1715a0a2d32193c56521c4e3ac8N.exe

    • Size

      454KB

    • MD5

      72d1bd4f5c5a9ddfa52d32d7dc524610

    • SHA1

      912217b6167ab8fc1ced5bb73180b95a6acd32d4

    • SHA256

      7b2103c8725467b5bf34174b5360d80f9f08f1715a0a2d32193c56521c4e3ac8

    • SHA512

      6d994d7a0cf0440097ff259d47f04303b61205db7dad541127f18681afcad65f85e4b7ba11a068d0c2f148a63562d9b670dd06f7a8d7037fbc4a4f0423762341

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeO:q7Tc2NYHUrAwfMp3CDO

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks