General

  • Target

    da10b489f52cbcbeb3ce23d82b6db7955b6fe0eac9affa9d3dbf43fb408975fcN.exe

  • Size

    454KB

  • Sample

    250127-scy1jatnfw

  • MD5

    16370949d9d04157a1f380c9d26e8b40

  • SHA1

    57eff2ef93dc8a6b55d79cb92643addc055c9df6

  • SHA256

    da10b489f52cbcbeb3ce23d82b6db7955b6fe0eac9affa9d3dbf43fb408975fc

  • SHA512

    1c6b430a73fb51270e30dbc1df99f31d48b295407726c321ebed4c643d8dda13a5efaa3ab9b4293a0e7933be2fd13efc2a692e4f7b99da455167db1eea532847

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeY:q7Tc2NYHUrAwfMp3CDY

Malware Config

Targets

    • Target

      da10b489f52cbcbeb3ce23d82b6db7955b6fe0eac9affa9d3dbf43fb408975fcN.exe

    • Size

      454KB

    • MD5

      16370949d9d04157a1f380c9d26e8b40

    • SHA1

      57eff2ef93dc8a6b55d79cb92643addc055c9df6

    • SHA256

      da10b489f52cbcbeb3ce23d82b6db7955b6fe0eac9affa9d3dbf43fb408975fc

    • SHA512

      1c6b430a73fb51270e30dbc1df99f31d48b295407726c321ebed4c643d8dda13a5efaa3ab9b4293a0e7933be2fd13efc2a692e4f7b99da455167db1eea532847

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeY:q7Tc2NYHUrAwfMp3CDY

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks