General

  • Target

    389c5ad9869e40d6626f06d5a831345464af68883e10b185ccbdba235c6b65ec.exe

  • Size

    454KB

  • Sample

    250111-hlqqeaskgn

  • MD5

    6a366e9f87e39ad6b8204d91d388c25b

  • SHA1

    c30609d4b42c3f37caf982aae38cfff7bd8c8242

  • SHA256

    389c5ad9869e40d6626f06d5a831345464af68883e10b185ccbdba235c6b65ec

  • SHA512

    e56a94ee89da6dbd4167888328c8f6b022a35db26437ae22a34a8247cd4610e36be3604f356996d3b17dc803ecb467ac9ba502acaf551c67872a589dfe72b8ed

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

Malware Config

Targets

    • Target

      389c5ad9869e40d6626f06d5a831345464af68883e10b185ccbdba235c6b65ec.exe

    • Size

      454KB

    • MD5

      6a366e9f87e39ad6b8204d91d388c25b

    • SHA1

      c30609d4b42c3f37caf982aae38cfff7bd8c8242

    • SHA256

      389c5ad9869e40d6626f06d5a831345464af68883e10b185ccbdba235c6b65ec

    • SHA512

      e56a94ee89da6dbd4167888328c8f6b022a35db26437ae22a34a8247cd4610e36be3604f356996d3b17dc803ecb467ac9ba502acaf551c67872a589dfe72b8ed

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks