General

  • Target

    e124b9514ccf49ca332eda8a489eff83eabd6191cf99aa6f339dec443633b637N.exe

  • Size

    455KB

  • Sample

    250108-jcb2bsznav

  • MD5

    fe90074b77b4f211c2a73b2ffa0a0dd0

  • SHA1

    50905d03c3d9199fb3881c84cb266987c05dd5eb

  • SHA256

    e124b9514ccf49ca332eda8a489eff83eabd6191cf99aa6f339dec443633b637

  • SHA512

    cb33d4c4226b93eb1abb048885393b3968a74ae3b01035ec669228b910a4819e716acb04ab4fac7a14c873b88c7c4ca379b84800e0ecad0fe3ccd4325f838f4f

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTI:q7Tc2NYHUrAwfMp3CDE

Malware Config

Targets

    • Target

      e124b9514ccf49ca332eda8a489eff83eabd6191cf99aa6f339dec443633b637N.exe

    • Size

      455KB

    • MD5

      fe90074b77b4f211c2a73b2ffa0a0dd0

    • SHA1

      50905d03c3d9199fb3881c84cb266987c05dd5eb

    • SHA256

      e124b9514ccf49ca332eda8a489eff83eabd6191cf99aa6f339dec443633b637

    • SHA512

      cb33d4c4226b93eb1abb048885393b3968a74ae3b01035ec669228b910a4819e716acb04ab4fac7a14c873b88c7c4ca379b84800e0ecad0fe3ccd4325f838f4f

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTI:q7Tc2NYHUrAwfMp3CDE

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks