General

  • Target

    42a9256866951ba97bc6ac1f0a020834921cd0eb33e08f023ea4abfaeb4f1798.exe

  • Size

    454KB

  • Sample

    250108-jldxaaspgr

  • MD5

    99d4c9cae7282dead6ecbce3fdc205d7

  • SHA1

    69b937ad69669c700ff81efb8102e2e4e95c89bf

  • SHA256

    42a9256866951ba97bc6ac1f0a020834921cd0eb33e08f023ea4abfaeb4f1798

  • SHA512

    f238e62e62b59ab69cb3169a3d2cef2da1b279fec6d0ccf5bf1845f9492c81f652983e8a3f4cfa217753c01426f61044f2f3bbe7756d998341dc34a16ead1aa2

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

Malware Config

Targets

    • Target

      42a9256866951ba97bc6ac1f0a020834921cd0eb33e08f023ea4abfaeb4f1798.exe

    • Size

      454KB

    • MD5

      99d4c9cae7282dead6ecbce3fdc205d7

    • SHA1

      69b937ad69669c700ff81efb8102e2e4e95c89bf

    • SHA256

      42a9256866951ba97bc6ac1f0a020834921cd0eb33e08f023ea4abfaeb4f1798

    • SHA512

      f238e62e62b59ab69cb3169a3d2cef2da1b279fec6d0ccf5bf1845f9492c81f652983e8a3f4cfa217753c01426f61044f2f3bbe7756d998341dc34a16ead1aa2

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks