General

  • Target

    c559ab6def6585cce29e5d1edbb397d9c8a7d8498fa72d5844acbf1630de2204

  • Size

    453KB

  • Sample

    250108-jqsw1a1jg1

  • MD5

    c15d00799f43932a3b151126b8aa5756

  • SHA1

    0639d2845adcc765b26d535afa1e2ebc0e7ada40

  • SHA256

    c559ab6def6585cce29e5d1edbb397d9c8a7d8498fa72d5844acbf1630de2204

  • SHA512

    8df9fa6cd11fedfaa75cf310ee6dcceed44ecb3125cb8359ab011b60526c9c643ff7fe3317641d2814cd65b15574d39fb9aca2d15a98742cccfd99811f163086

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

Malware Config

Targets

    • Target

      c559ab6def6585cce29e5d1edbb397d9c8a7d8498fa72d5844acbf1630de2204

    • Size

      453KB

    • MD5

      c15d00799f43932a3b151126b8aa5756

    • SHA1

      0639d2845adcc765b26d535afa1e2ebc0e7ada40

    • SHA256

      c559ab6def6585cce29e5d1edbb397d9c8a7d8498fa72d5844acbf1630de2204

    • SHA512

      8df9fa6cd11fedfaa75cf310ee6dcceed44ecb3125cb8359ab011b60526c9c643ff7fe3317641d2814cd65b15574d39fb9aca2d15a98742cccfd99811f163086

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeE:q7Tc2NYHUrAwfMp3CDE

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks