General

  • Target

    c63fa76566ed177fdc161b7169917c02cd7b4cc77cb8bd22f7d89dbdabdb811d

  • Size

    456KB

  • Sample

    250108-jszsbs1kgt

  • MD5

    8a7e8b4350c9058ddacb0502d41b63d5

  • SHA1

    36deff394a28779cdeddba9fcd5260c7ac4d6fdc

  • SHA256

    c63fa76566ed177fdc161b7169917c02cd7b4cc77cb8bd22f7d89dbdabdb811d

  • SHA512

    6a5d7e517526abfffce7dceac19cdea80f17dcf420a74f5576e9b643a99babcde822079990e5a2625a37b921f64a7c297cc525c2b3327c5c39eef7bdfa2db1d5

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRn:q7Tc2NYHUrAwfMp3CDRn

Malware Config

Targets

    • Target

      c63fa76566ed177fdc161b7169917c02cd7b4cc77cb8bd22f7d89dbdabdb811d

    • Size

      456KB

    • MD5

      8a7e8b4350c9058ddacb0502d41b63d5

    • SHA1

      36deff394a28779cdeddba9fcd5260c7ac4d6fdc

    • SHA256

      c63fa76566ed177fdc161b7169917c02cd7b4cc77cb8bd22f7d89dbdabdb811d

    • SHA512

      6a5d7e517526abfffce7dceac19cdea80f17dcf420a74f5576e9b643a99babcde822079990e5a2625a37b921f64a7c297cc525c2b3327c5c39eef7bdfa2db1d5

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRn:q7Tc2NYHUrAwfMp3CDRn

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks