General

  • Target

    72e7889410cf726a66efb59140075073358d191d6979a370bf5cdb45c31f6a1b.exe

  • Size

    454KB

  • Sample

    250108-jnnt9s1jax

  • MD5

    c1c94ee575031cd88928c0c6862e6e1a

  • SHA1

    8535a39e3c9329d4bdc0f67ccaa3c855faffaa19

  • SHA256

    72e7889410cf726a66efb59140075073358d191d6979a370bf5cdb45c31f6a1b

  • SHA512

    c4816f0b61900e4799ca6d06b8b693bceb1c21d9e1f78665c2bb166624a4e4123dca263e1ac20f800867f43ad440d14133e515a0df5f6becb709206188dda61b

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbez:q7Tc2NYHUrAwfMp3CDz

Malware Config

Targets

    • Target

      72e7889410cf726a66efb59140075073358d191d6979a370bf5cdb45c31f6a1b.exe

    • Size

      454KB

    • MD5

      c1c94ee575031cd88928c0c6862e6e1a

    • SHA1

      8535a39e3c9329d4bdc0f67ccaa3c855faffaa19

    • SHA256

      72e7889410cf726a66efb59140075073358d191d6979a370bf5cdb45c31f6a1b

    • SHA512

      c4816f0b61900e4799ca6d06b8b693bceb1c21d9e1f78665c2bb166624a4e4123dca263e1ac20f800867f43ad440d14133e515a0df5f6becb709206188dda61b

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbez:q7Tc2NYHUrAwfMp3CDz

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks