General

  • Target

    c4abf3d385d1bc0ae431d375de08d95327f51cd03635cbf69352a78f64d34390.exe

  • Size

    454KB

  • Sample

    250127-scpf4avkdm

  • MD5

    2e5ab7770cd7bbb00d78b13dd98d3453

  • SHA1

    f97224712d8992a5ec963cdd9fb9b74134fa3719

  • SHA256

    c4abf3d385d1bc0ae431d375de08d95327f51cd03635cbf69352a78f64d34390

  • SHA512

    adda46a15e71a5479660e04214083046586c037a075c9c2c3c112da2b400b917214287030a201a1a01c8c6b88da0f6593c82f3c0db1bc28d0169b6bf5704f06e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

Malware Config

Targets

    • Target

      c4abf3d385d1bc0ae431d375de08d95327f51cd03635cbf69352a78f64d34390.exe

    • Size

      454KB

    • MD5

      2e5ab7770cd7bbb00d78b13dd98d3453

    • SHA1

      f97224712d8992a5ec963cdd9fb9b74134fa3719

    • SHA256

      c4abf3d385d1bc0ae431d375de08d95327f51cd03635cbf69352a78f64d34390

    • SHA512

      adda46a15e71a5479660e04214083046586c037a075c9c2c3c112da2b400b917214287030a201a1a01c8c6b88da0f6593c82f3c0db1bc28d0169b6bf5704f06e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks