General

  • Target

    907e4063bb136f5661169875d3579e0a44fad12b6e8d8bdd3be80f13902210cbN.exe

  • Size

    454KB

  • Sample

    250108-jf5g2ssmhp

  • MD5

    cbdf7352fb2534971c710847791a1f50

  • SHA1

    c45c598e645adcd2ee426926b06d381602fe8cc1

  • SHA256

    907e4063bb136f5661169875d3579e0a44fad12b6e8d8bdd3be80f13902210cb

  • SHA512

    c2f22da7fddd8a8fe541ba922b1b463712808a24cc6255d4b5c4d68da91ad73ad9168c8dd1b088a0dd4da8e1ecedae0be289f660f5e0e37b9218770d9a94a5f3

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeV:q7Tc2NYHUrAwfMp3CDV

Malware Config

Targets

    • Target

      907e4063bb136f5661169875d3579e0a44fad12b6e8d8bdd3be80f13902210cbN.exe

    • Size

      454KB

    • MD5

      cbdf7352fb2534971c710847791a1f50

    • SHA1

      c45c598e645adcd2ee426926b06d381602fe8cc1

    • SHA256

      907e4063bb136f5661169875d3579e0a44fad12b6e8d8bdd3be80f13902210cb

    • SHA512

      c2f22da7fddd8a8fe541ba922b1b463712808a24cc6255d4b5c4d68da91ad73ad9168c8dd1b088a0dd4da8e1ecedae0be289f660f5e0e37b9218770d9a94a5f3

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeV:q7Tc2NYHUrAwfMp3CDV

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks