General

  • Target

    c5b9d617423b2e9460303ebc380f3883abddc9b0bc46e4eb962ef27e180146a7

  • Size

    454KB

  • Sample

    250108-jsdj4a1kew

  • MD5

    157df0bff2999b83992223a5f9fb470f

  • SHA1

    366f48f95f46021811fed1e999b0967bf4decad4

  • SHA256

    c5b9d617423b2e9460303ebc380f3883abddc9b0bc46e4eb962ef27e180146a7

  • SHA512

    8db6f37090153e3991ef166d7aa2b1cbc7328cfad684112a0d53ccc5595d5d3bdc803726180668505a63b22216cb96d06489da85103ff8ccd4bdc4309cf72dd3

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeF:q7Tc2NYHUrAwfMp3CDF

Malware Config

Targets

    • Target

      c5b9d617423b2e9460303ebc380f3883abddc9b0bc46e4eb962ef27e180146a7

    • Size

      454KB

    • MD5

      157df0bff2999b83992223a5f9fb470f

    • SHA1

      366f48f95f46021811fed1e999b0967bf4decad4

    • SHA256

      c5b9d617423b2e9460303ebc380f3883abddc9b0bc46e4eb962ef27e180146a7

    • SHA512

      8db6f37090153e3991ef166d7aa2b1cbc7328cfad684112a0d53ccc5595d5d3bdc803726180668505a63b22216cb96d06489da85103ff8ccd4bdc4309cf72dd3

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeF:q7Tc2NYHUrAwfMp3CDF

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks