General

  • Target

    345aee94f13ed096488f49cf62fa962cf54346432c80fa99056374660a28baba.exe

  • Size

    454KB

  • Sample

    250108-ja6g6azmex

  • MD5

    1f0826a932f50220d80b1b9cb06ddb01

  • SHA1

    9e4909014c3388689442af213a693de08c687ab4

  • SHA256

    345aee94f13ed096488f49cf62fa962cf54346432c80fa99056374660a28baba

  • SHA512

    a86113efdc45bb5f63c46cd464abc9958c4d79687dd4d6bb91118eb6a044cde40a6a382152eaa03a9967b60f482725aae1d0ea996123157d9e21b3fca91705f0

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR:q7Tc2NYHUrAwfMp3CDR

Malware Config

Targets

    • Target

      345aee94f13ed096488f49cf62fa962cf54346432c80fa99056374660a28baba.exe

    • Size

      454KB

    • MD5

      1f0826a932f50220d80b1b9cb06ddb01

    • SHA1

      9e4909014c3388689442af213a693de08c687ab4

    • SHA256

      345aee94f13ed096488f49cf62fa962cf54346432c80fa99056374660a28baba

    • SHA512

      a86113efdc45bb5f63c46cd464abc9958c4d79687dd4d6bb91118eb6a044cde40a6a382152eaa03a9967b60f482725aae1d0ea996123157d9e21b3fca91705f0

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR:q7Tc2NYHUrAwfMp3CDR

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks