General

  • Target

    198e016fb739150fc1d98e2f54ff5ca5cbd4a5e536c180f6ef9c65c6f38741a9N.exe

  • Size

    454KB

  • Sample

    250108-jqdgbasrfj

  • MD5

    2559dda28bcc31ccaa240c3fea3357e0

  • SHA1

    3515c647dfe9d140b49d5d6e0fc5d23df8766b93

  • SHA256

    198e016fb739150fc1d98e2f54ff5ca5cbd4a5e536c180f6ef9c65c6f38741a9

  • SHA512

    a89db2b0bcff975de90684b9b6cb2fb7c66f9c2c9c35cd72290fb2e4d6d67cb317ed427f2758ee79c4a1871b1f9ba8e81a6d8d64b0f17e1e441f5b4514566abd

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeS:q7Tc2NYHUrAwfMp3CDS

Malware Config

Targets

    • Target

      198e016fb739150fc1d98e2f54ff5ca5cbd4a5e536c180f6ef9c65c6f38741a9N.exe

    • Size

      454KB

    • MD5

      2559dda28bcc31ccaa240c3fea3357e0

    • SHA1

      3515c647dfe9d140b49d5d6e0fc5d23df8766b93

    • SHA256

      198e016fb739150fc1d98e2f54ff5ca5cbd4a5e536c180f6ef9c65c6f38741a9

    • SHA512

      a89db2b0bcff975de90684b9b6cb2fb7c66f9c2c9c35cd72290fb2e4d6d67cb317ed427f2758ee79c4a1871b1f9ba8e81a6d8d64b0f17e1e441f5b4514566abd

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeS:q7Tc2NYHUrAwfMp3CDS

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks