General

  • Target

    ea8a63f1989c577258b9fbbd4578ff8efbd133342360d831d118a8c81961a535.exe

  • Size

    454KB

  • Sample

    250108-jslwga1ke1

  • MD5

    9a4e1d31c839493c98c5ad01beb9fbf1

  • SHA1

    eea6d9a53844e617518702b7ef9c357fcc8536c4

  • SHA256

    ea8a63f1989c577258b9fbbd4578ff8efbd133342360d831d118a8c81961a535

  • SHA512

    e34370d1d78188661a4707a8bcea1eac19feed31e45279bc43db6aaf9393fbf3b2cb3033598a0d6dcf9b2f5041f45b039d1b5bd99a0cc2bb8fd0ce676fed03c2

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbea:q7Tc2NYHUrAwfMp3CDa

Malware Config

Targets

    • Target

      ea8a63f1989c577258b9fbbd4578ff8efbd133342360d831d118a8c81961a535.exe

    • Size

      454KB

    • MD5

      9a4e1d31c839493c98c5ad01beb9fbf1

    • SHA1

      eea6d9a53844e617518702b7ef9c357fcc8536c4

    • SHA256

      ea8a63f1989c577258b9fbbd4578ff8efbd133342360d831d118a8c81961a535

    • SHA512

      e34370d1d78188661a4707a8bcea1eac19feed31e45279bc43db6aaf9393fbf3b2cb3033598a0d6dcf9b2f5041f45b039d1b5bd99a0cc2bb8fd0ce676fed03c2

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbea:q7Tc2NYHUrAwfMp3CDa

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks