General

  • Target

    8302dc22ca50968a9d53bba9fd2f800d11e2b6e62ce771e2f9d9cfa6803d3988.exe

  • Size

    454KB

  • Sample

    250108-jcmg3aznbv

  • MD5

    20b0b7432eb483956423590cb15b1b66

  • SHA1

    9e52b1e41407bae74996d7376b3f7219e08a7b5b

  • SHA256

    8302dc22ca50968a9d53bba9fd2f800d11e2b6e62ce771e2f9d9cfa6803d3988

  • SHA512

    3f176395a2540b683cb53367ec192eb1cd2d23f527ec675b449cb23a66685478eb3bced95a48789e34f48fb52e37e1f49a423d30aabe922b083f906d2de2f939

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe5:q7Tc2NYHUrAwfMp3CD5

Malware Config

Targets

    • Target

      8302dc22ca50968a9d53bba9fd2f800d11e2b6e62ce771e2f9d9cfa6803d3988.exe

    • Size

      454KB

    • MD5

      20b0b7432eb483956423590cb15b1b66

    • SHA1

      9e52b1e41407bae74996d7376b3f7219e08a7b5b

    • SHA256

      8302dc22ca50968a9d53bba9fd2f800d11e2b6e62ce771e2f9d9cfa6803d3988

    • SHA512

      3f176395a2540b683cb53367ec192eb1cd2d23f527ec675b449cb23a66685478eb3bced95a48789e34f48fb52e37e1f49a423d30aabe922b083f906d2de2f939

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe5:q7Tc2NYHUrAwfMp3CD5

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks