General

  • Target

    408f54866e566425a15be3b04820f2dad150746a64a6175c2a98063b4ce203aa.exe

  • Size

    454KB

  • Sample

    250108-jgp4rasnbm

  • MD5

    ff66c05c67cbc07b66df48078073eee2

  • SHA1

    daf4e9ee6e5c1500715b45ed593534b138cbc251

  • SHA256

    408f54866e566425a15be3b04820f2dad150746a64a6175c2a98063b4ce203aa

  • SHA512

    9f1685cd01388d93a3b7f7f9d975bb8cba664dcc31691108b6f1133e74465beb65e9d2d621db2b7be5383ea1b142d0f818950d804b667fff5470cf6d9959c574

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeV:q7Tc2NYHUrAwfMp3CDV

Malware Config

Targets

    • Target

      408f54866e566425a15be3b04820f2dad150746a64a6175c2a98063b4ce203aa.exe

    • Size

      454KB

    • MD5

      ff66c05c67cbc07b66df48078073eee2

    • SHA1

      daf4e9ee6e5c1500715b45ed593534b138cbc251

    • SHA256

      408f54866e566425a15be3b04820f2dad150746a64a6175c2a98063b4ce203aa

    • SHA512

      9f1685cd01388d93a3b7f7f9d975bb8cba664dcc31691108b6f1133e74465beb65e9d2d621db2b7be5383ea1b142d0f818950d804b667fff5470cf6d9959c574

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeV:q7Tc2NYHUrAwfMp3CDV

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks