General

  • Target

    8affcbca29c69f519c07551b59f44c6820eb6a7244a22c8d404e2f56c0733142.exe

  • Size

    454KB

  • Sample

    250108-jfss9azpcs

  • MD5

    7570ea9a3cfbcac336ddc77fa7f781db

  • SHA1

    549c44b407e917713dc70a141173d4505adef6e3

  • SHA256

    8affcbca29c69f519c07551b59f44c6820eb6a7244a22c8d404e2f56c0733142

  • SHA512

    329019af00a32a09dd687b6cf2bcf631696ced0384932d6d912d6487bc593971f01ac576df3f89eed20fba5c2f1cfaea6b4a26d17e3d8040e15adcf0f65008e0

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeI:q7Tc2NYHUrAwfMp3CDI

Malware Config

Targets

    • Target

      8affcbca29c69f519c07551b59f44c6820eb6a7244a22c8d404e2f56c0733142.exe

    • Size

      454KB

    • MD5

      7570ea9a3cfbcac336ddc77fa7f781db

    • SHA1

      549c44b407e917713dc70a141173d4505adef6e3

    • SHA256

      8affcbca29c69f519c07551b59f44c6820eb6a7244a22c8d404e2f56c0733142

    • SHA512

      329019af00a32a09dd687b6cf2bcf631696ced0384932d6d912d6487bc593971f01ac576df3f89eed20fba5c2f1cfaea6b4a26d17e3d8040e15adcf0f65008e0

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeI:q7Tc2NYHUrAwfMp3CDI

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks