General

  • Target

    baa896de966d991b59bc3277a4b65b017eca2983daa7a22b08902bd8fa387ec1

  • Size

    456KB

  • Sample

    250108-hzr6ds1qhq

  • MD5

    e91f5d4d855864c328e99d8e25a85c01

  • SHA1

    f8f47a89ac1f3f845aa816e944ddb2220f59b124

  • SHA256

    baa896de966d991b59bc3277a4b65b017eca2983daa7a22b08902bd8fa387ec1

  • SHA512

    addb76e00ae6566614d920419fd703d8632508db6ec5740d3309def0a7d9ed94cdb71c8b95bed2832c74945c18aa641ddec4eb3c5380a62c45af91523ae9b550

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRo:q7Tc2NYHUrAwfMp3CDRo

Malware Config

Targets

    • Target

      baa896de966d991b59bc3277a4b65b017eca2983daa7a22b08902bd8fa387ec1

    • Size

      456KB

    • MD5

      e91f5d4d855864c328e99d8e25a85c01

    • SHA1

      f8f47a89ac1f3f845aa816e944ddb2220f59b124

    • SHA256

      baa896de966d991b59bc3277a4b65b017eca2983daa7a22b08902bd8fa387ec1

    • SHA512

      addb76e00ae6566614d920419fd703d8632508db6ec5740d3309def0a7d9ed94cdb71c8b95bed2832c74945c18aa641ddec4eb3c5380a62c45af91523ae9b550

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRo:q7Tc2NYHUrAwfMp3CDRo

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks