General

  • Target

    bcc750e6cfaf700bd204fa9bfe1d025a5990c214e951b2039a69f2a14f0ed866

  • Size

    454KB

  • Sample

    250108-jaqrpszmds

  • MD5

    5b5e55e9109ef0c766a32ea8d1070723

  • SHA1

    55149d7e7fe851a0eada703f46a0ae265a4dfa2e

  • SHA256

    bcc750e6cfaf700bd204fa9bfe1d025a5990c214e951b2039a69f2a14f0ed866

  • SHA512

    c21648d477d3a0b9e20b178259f1070e4770d6375cf487c9e3f722b2f0b9c7964bd75d96ee4008dc05e7f624011999a5900dfc5d68e2c6a6f87a40affe099799

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe5:q7Tc2NYHUrAwfMp3CD5

Malware Config

Targets

    • Target

      bcc750e6cfaf700bd204fa9bfe1d025a5990c214e951b2039a69f2a14f0ed866

    • Size

      454KB

    • MD5

      5b5e55e9109ef0c766a32ea8d1070723

    • SHA1

      55149d7e7fe851a0eada703f46a0ae265a4dfa2e

    • SHA256

      bcc750e6cfaf700bd204fa9bfe1d025a5990c214e951b2039a69f2a14f0ed866

    • SHA512

      c21648d477d3a0b9e20b178259f1070e4770d6375cf487c9e3f722b2f0b9c7964bd75d96ee4008dc05e7f624011999a5900dfc5d68e2c6a6f87a40affe099799

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe5:q7Tc2NYHUrAwfMp3CD5

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks