General

  • Target

    0ded9e8457ad39a3949f7c5bb9ee998793088d6c1cbb3c0684aade190506ca6dN.exe

  • Size

    454KB

  • Sample

    250108-jqf77ssrfn

  • MD5

    0a7c436e12f4e6b38f1e6259cd456970

  • SHA1

    5160a12894b06f98752987d28c1fd83c88a9244e

  • SHA256

    0ded9e8457ad39a3949f7c5bb9ee998793088d6c1cbb3c0684aade190506ca6d

  • SHA512

    b91ee8f7b52ccebb10f83b8b17e51655406e3e876b4fb407313da0c21e6fc9daedbe18a045eb1b2d8dc0dd35f80e67909388470be5a6290953a6e66ab08ac6aa

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeL:q7Tc2NYHUrAwfMp3CDL

Malware Config

Targets

    • Target

      0ded9e8457ad39a3949f7c5bb9ee998793088d6c1cbb3c0684aade190506ca6dN.exe

    • Size

      454KB

    • MD5

      0a7c436e12f4e6b38f1e6259cd456970

    • SHA1

      5160a12894b06f98752987d28c1fd83c88a9244e

    • SHA256

      0ded9e8457ad39a3949f7c5bb9ee998793088d6c1cbb3c0684aade190506ca6d

    • SHA512

      b91ee8f7b52ccebb10f83b8b17e51655406e3e876b4fb407313da0c21e6fc9daedbe18a045eb1b2d8dc0dd35f80e67909388470be5a6290953a6e66ab08ac6aa

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeL:q7Tc2NYHUrAwfMp3CDL

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks