General

  • Target

    c574d8da123b3cace2cd051eb5e24898e7dcb522182743764b129d4ea005f901

  • Size

    454KB

  • Sample

    250108-jq492a1kav

  • MD5

    e8c49388b0d9e6ca0a463dfd2683bb4b

  • SHA1

    80ecec53ba11937651b83239c405e6fc341e36f2

  • SHA256

    c574d8da123b3cace2cd051eb5e24898e7dcb522182743764b129d4ea005f901

  • SHA512

    7d02f5868c07cb4f5a338c0660f57cd6d7928d76e23466d6d7a8236dd92c3874f86f511f035649f90dce4e077a31662391f6e559819458a27c09aa6efec0b2a3

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbej/:q7Tc2NYHUrAwfMp3CDT

Malware Config

Targets

    • Target

      c574d8da123b3cace2cd051eb5e24898e7dcb522182743764b129d4ea005f901

    • Size

      454KB

    • MD5

      e8c49388b0d9e6ca0a463dfd2683bb4b

    • SHA1

      80ecec53ba11937651b83239c405e6fc341e36f2

    • SHA256

      c574d8da123b3cace2cd051eb5e24898e7dcb522182743764b129d4ea005f901

    • SHA512

      7d02f5868c07cb4f5a338c0660f57cd6d7928d76e23466d6d7a8236dd92c3874f86f511f035649f90dce4e077a31662391f6e559819458a27c09aa6efec0b2a3

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbej/:q7Tc2NYHUrAwfMp3CDT

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks