General

  • Target

    c01f28480ebeee8fcded89057db6cbbb613dd477cbbf25beb2a05012172b2bc3

  • Size

    454KB

  • Sample

    250108-jdkpvsznew

  • MD5

    4c5e831e17bdbe5a12e353f3d4e3debf

  • SHA1

    68d40e6829b7a3d040086abf68e3d1fe58fcb36b

  • SHA256

    c01f28480ebeee8fcded89057db6cbbb613dd477cbbf25beb2a05012172b2bc3

  • SHA512

    0bd7fe7a742ec891d5582feccd030f68daecbba1659bca416b1b1e3faaa15c45ef834ac89c81a0c6c3a15857f5287f75acd21af7aeb44b5a3f691e58b6e7e5d5

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeO:q7Tc2NYHUrAwfMp3CDO

Malware Config

Targets

    • Target

      c01f28480ebeee8fcded89057db6cbbb613dd477cbbf25beb2a05012172b2bc3

    • Size

      454KB

    • MD5

      4c5e831e17bdbe5a12e353f3d4e3debf

    • SHA1

      68d40e6829b7a3d040086abf68e3d1fe58fcb36b

    • SHA256

      c01f28480ebeee8fcded89057db6cbbb613dd477cbbf25beb2a05012172b2bc3

    • SHA512

      0bd7fe7a742ec891d5582feccd030f68daecbba1659bca416b1b1e3faaa15c45ef834ac89c81a0c6c3a15857f5287f75acd21af7aeb44b5a3f691e58b6e7e5d5

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeO:q7Tc2NYHUrAwfMp3CDO

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks