General

  • Target

    586bbd5e5a4b5cf47ad9e1a752ece69fe0e48686ab3381d87ecfeca0ee73bc2b

  • Size

    92KB

  • Sample

    250328-1ahjrstks8

  • MD5

    fb721cdc8ec37139881060f3912b8925

  • SHA1

    194b2a876681063553db56de33adcdf462aebc3d

  • SHA256

    586bbd5e5a4b5cf47ad9e1a752ece69fe0e48686ab3381d87ecfeca0ee73bc2b

  • SHA512

    9c46c107f50b735310a6835738e6f46376d4f9d49efa9cb1dad6870dbab8329de1f1d3511a3f4b443363eef1feb3c769dcdb1ef1780fafda689110d50709d265

  • SSDEEP

    1536:8vQBeOGtrYS3srx93UBWfwC6Ggnouy80fg3Cip8iXAsG5M0u5fVBA1zO:8hOmTsF93UYfwC6GIout0fmCiiiXA6NL

Malware Config

Targets

    • Target

      586bbd5e5a4b5cf47ad9e1a752ece69fe0e48686ab3381d87ecfeca0ee73bc2b

    • Size

      92KB

    • MD5

      fb721cdc8ec37139881060f3912b8925

    • SHA1

      194b2a876681063553db56de33adcdf462aebc3d

    • SHA256

      586bbd5e5a4b5cf47ad9e1a752ece69fe0e48686ab3381d87ecfeca0ee73bc2b

    • SHA512

      9c46c107f50b735310a6835738e6f46376d4f9d49efa9cb1dad6870dbab8329de1f1d3511a3f4b443363eef1feb3c769dcdb1ef1780fafda689110d50709d265

    • SSDEEP

      1536:8vQBeOGtrYS3srx93UBWfwC6Ggnouy80fg3Cip8iXAsG5M0u5fVBA1zO:8hOmTsF93UYfwC6GIout0fmCiiiXA6NL

    • Blackmoon family

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks