General

  • Target

    922a838af9a73692b432131c4c60b42af497c53751e184d0c1e9dced3108fc2a.exe

  • Size

    454KB

  • Sample

    250108-jjnnpszqcy

  • MD5

    88943742fb126eddd36896fe56492d1c

  • SHA1

    b59c47bf053355f69f79165ff33fae52a03582fb

  • SHA256

    922a838af9a73692b432131c4c60b42af497c53751e184d0c1e9dced3108fc2a

  • SHA512

    e4ea52b69ff0da35087208b43efffdf610eacd9b96ab401ebd5985873547a8f27095b7258cf352c3cdaa9c5d3f1d9d3e538e8eb250c35c8dc6731225a597c8dc

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe+:q7Tc2NYHUrAwfMp3CD+

Malware Config

Targets

    • Target

      922a838af9a73692b432131c4c60b42af497c53751e184d0c1e9dced3108fc2a.exe

    • Size

      454KB

    • MD5

      88943742fb126eddd36896fe56492d1c

    • SHA1

      b59c47bf053355f69f79165ff33fae52a03582fb

    • SHA256

      922a838af9a73692b432131c4c60b42af497c53751e184d0c1e9dced3108fc2a

    • SHA512

      e4ea52b69ff0da35087208b43efffdf610eacd9b96ab401ebd5985873547a8f27095b7258cf352c3cdaa9c5d3f1d9d3e538e8eb250c35c8dc6731225a597c8dc

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbe+:q7Tc2NYHUrAwfMp3CD+

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks