General

  • Target

    25dc301dea72954956a5151efbbfffdd6604a270ba184e4f930f6f791ac3c3a4.exe

  • Size

    454KB

  • Sample

    250120-k8jayssmbm

  • MD5

    d58556a689f9cccc9298ff27191f07e5

  • SHA1

    1514a627a87a15cadb619fa89f67510646c837cb

  • SHA256

    25dc301dea72954956a5151efbbfffdd6604a270ba184e4f930f6f791ac3c3a4

  • SHA512

    1debade0d6063e52bd581915b5768256b5f3263f47cd2727d46111444b14f49fb4adf188f66fbdab45b89cb08a81d7ce38f6ad75b0ea36544ff371cfb4ea95d9

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbek:q7Tc2NYHUrAwfMp3CDk

Malware Config

Targets

    • Target

      25dc301dea72954956a5151efbbfffdd6604a270ba184e4f930f6f791ac3c3a4.exe

    • Size

      454KB

    • MD5

      d58556a689f9cccc9298ff27191f07e5

    • SHA1

      1514a627a87a15cadb619fa89f67510646c837cb

    • SHA256

      25dc301dea72954956a5151efbbfffdd6604a270ba184e4f930f6f791ac3c3a4

    • SHA512

      1debade0d6063e52bd581915b5768256b5f3263f47cd2727d46111444b14f49fb4adf188f66fbdab45b89cb08a81d7ce38f6ad75b0ea36544ff371cfb4ea95d9

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbek:q7Tc2NYHUrAwfMp3CDk

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks