General

  • Target

    22a1f9024272ce4e74cb6813e14e57debcb4ccd8a335800f835419d61f00fc27N.exe

  • Size

    454KB

  • Sample

    250108-jpqegs1jdz

  • MD5

    ff4535eb70811e0f2f4c3272ad0dc240

  • SHA1

    0ae88cc7bd681e76005ee70b3b89ae2837ebf603

  • SHA256

    22a1f9024272ce4e74cb6813e14e57debcb4ccd8a335800f835419d61f00fc27

  • SHA512

    f862652804b9ee1d49bf6a3deae8dbbb218bb2e49f504fafce081584abec866a09b51029e199499c98b4201166babaee095273a8f446520f88379dcef1b76d1e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR:q7Tc2NYHUrAwfMp3CDR

Malware Config

Targets

    • Target

      22a1f9024272ce4e74cb6813e14e57debcb4ccd8a335800f835419d61f00fc27N.exe

    • Size

      454KB

    • MD5

      ff4535eb70811e0f2f4c3272ad0dc240

    • SHA1

      0ae88cc7bd681e76005ee70b3b89ae2837ebf603

    • SHA256

      22a1f9024272ce4e74cb6813e14e57debcb4ccd8a335800f835419d61f00fc27

    • SHA512

      f862652804b9ee1d49bf6a3deae8dbbb218bb2e49f504fafce081584abec866a09b51029e199499c98b4201166babaee095273a8f446520f88379dcef1b76d1e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeR:q7Tc2NYHUrAwfMp3CDR

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks