General

  • Target

    c125b0c5b9419c430c6d69246e84bf88eade04b6f514d76acc975af44391c6e3

  • Size

    454KB

  • Sample

    250108-jft2basmhj

  • MD5

    347ec512fa1836bfdad699e568f3ae3a

  • SHA1

    703f2d9978965835ef0e7d6c01f82a7ca26c0ec4

  • SHA256

    c125b0c5b9419c430c6d69246e84bf88eade04b6f514d76acc975af44391c6e3

  • SHA512

    f9afaa77cb35ed4dd628e30b91d85527e1645ef9fb329d108d2cb9b019df76d7094a95e3a013a42fc942b0d11702ffea299e794c204f88b658161f9d27db57c7

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

Malware Config

Targets

    • Target

      c125b0c5b9419c430c6d69246e84bf88eade04b6f514d76acc975af44391c6e3

    • Size

      454KB

    • MD5

      347ec512fa1836bfdad699e568f3ae3a

    • SHA1

      703f2d9978965835ef0e7d6c01f82a7ca26c0ec4

    • SHA256

      c125b0c5b9419c430c6d69246e84bf88eade04b6f514d76acc975af44391c6e3

    • SHA512

      f9afaa77cb35ed4dd628e30b91d85527e1645ef9fb329d108d2cb9b019df76d7094a95e3a013a42fc942b0d11702ffea299e794c204f88b658161f9d27db57c7

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks