General

  • Target

    76b37d6cb2a8699bb5e73afa52198bd66c7cf766bd511acdb5f9472d8c37d8a1.exe

  • Size

    455KB

  • Sample

    250108-jr9ada1kdy

  • MD5

    f9fc87e9dd9aac04ba45692a02f1ec18

  • SHA1

    ac739b12627619f4f611b68f1941dae82660cb8f

  • SHA256

    76b37d6cb2a8699bb5e73afa52198bd66c7cf766bd511acdb5f9472d8c37d8a1

  • SHA512

    1a313150bf0ffe9a51326f4a11d581285480118b04073b4a2dddd4b2a32239dc9df6435ab179fb01a6e5187b06e0a695d827f623b5aca0f1ff28037d536ab3dc

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeT3x:q7Tc2NYHUrAwfMp3CDrx

Malware Config

Targets

    • Target

      76b37d6cb2a8699bb5e73afa52198bd66c7cf766bd511acdb5f9472d8c37d8a1.exe

    • Size

      455KB

    • MD5

      f9fc87e9dd9aac04ba45692a02f1ec18

    • SHA1

      ac739b12627619f4f611b68f1941dae82660cb8f

    • SHA256

      76b37d6cb2a8699bb5e73afa52198bd66c7cf766bd511acdb5f9472d8c37d8a1

    • SHA512

      1a313150bf0ffe9a51326f4a11d581285480118b04073b4a2dddd4b2a32239dc9df6435ab179fb01a6e5187b06e0a695d827f623b5aca0f1ff28037d536ab3dc

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeT3x:q7Tc2NYHUrAwfMp3CDrx

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks