General

  • Target

    edb6528151936246bc0175487c5724b731ffe298db5bb99b91984f65bba7bcbf.exe

  • Size

    454KB

  • Sample

    250108-jh64nasngl

  • MD5

    36b624cdfecae57de9bfbb44faa9a37f

  • SHA1

    c774e95654a4c3d15034140f43365a4017e2d42e

  • SHA256

    edb6528151936246bc0175487c5724b731ffe298db5bb99b91984f65bba7bcbf

  • SHA512

    c79d3b73b6ffe10785cee435bf9c550468e1bbfa06840cc1be192f8db84142ca0c7c0a6326545407660d197aae524df58a99be4f3a7e52891049a780b207f1b9

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe2:q7Tc2NYHUrAwfMp3CD2

Malware Config

Targets

    • Target

      edb6528151936246bc0175487c5724b731ffe298db5bb99b91984f65bba7bcbf.exe

    • Size

      454KB

    • MD5

      36b624cdfecae57de9bfbb44faa9a37f

    • SHA1

      c774e95654a4c3d15034140f43365a4017e2d42e

    • SHA256

      edb6528151936246bc0175487c5724b731ffe298db5bb99b91984f65bba7bcbf

    • SHA512

      c79d3b73b6ffe10785cee435bf9c550468e1bbfa06840cc1be192f8db84142ca0c7c0a6326545407660d197aae524df58a99be4f3a7e52891049a780b207f1b9

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe2:q7Tc2NYHUrAwfMp3CD2

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks