General

  • Target

    569124c1de334f556757c8d3373aec33074cd25b804fff55d7f61d58cdac6267N.exe

  • Size

    456KB

  • Sample

    250127-scvm4stnez

  • MD5

    3a44302b79680e56fe39ff70332def10

  • SHA1

    91944c2100b587448eb3bdc232a004cc590913f5

  • SHA256

    569124c1de334f556757c8d3373aec33074cd25b804fff55d7f61d58cdac6267

  • SHA512

    1818adad24257c267ab7bf1a6abb01b564d1b2fe06dcb9ef3de6c3990a3efb7c41756f60a3e61d36ad4df2b258ddf5ccc067bee7664890bb481914051f638fcc

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTe/:q7Tc2NYHUrAwfMp3CDa/

Malware Config

Targets

    • Target

      569124c1de334f556757c8d3373aec33074cd25b804fff55d7f61d58cdac6267N.exe

    • Size

      456KB

    • MD5

      3a44302b79680e56fe39ff70332def10

    • SHA1

      91944c2100b587448eb3bdc232a004cc590913f5

    • SHA256

      569124c1de334f556757c8d3373aec33074cd25b804fff55d7f61d58cdac6267

    • SHA512

      1818adad24257c267ab7bf1a6abb01b564d1b2fe06dcb9ef3de6c3990a3efb7c41756f60a3e61d36ad4df2b258ddf5ccc067bee7664890bb481914051f638fcc

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeTe/:q7Tc2NYHUrAwfMp3CDa/

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks