Overview

overview

10

Static

static

1

d573bfc4f8...03.dll

windows7-x64

10

d573bfc4f8...03.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d573bfc4f8016b5762aac81d5ea2c1fbcd402d70139482fc9b3e19daf3800e03

  • Size

    1.4MB

  • Sample

    230222-xm276aeh2w

  • MD5

    19e6817b2fa1bae0e9e7cca721549835

  • SHA1

    91b66dd16e72111b478767ae0e5837988f50166b

  • SHA256

    d573bfc4f8016b5762aac81d5ea2c1fbcd402d70139482fc9b3e19daf3800e03

  • SHA512

    998adf86dd8380b8fc3daf28328e369e06fbeb30ecdc91650880d01549c971e3cf4613e5806345672c3acd59376e65e63437f201a8bd70b17013d2a6e24c3f32

  • SSDEEP

    24576:EWaBswTAEoKwlTD82CJy4VInpmVCfixrWxITZHCALkl4Njkiu2XOx2jo7dmPtzPD:+BsUAEvw435VInksQoIdHCkdG2X1oJCc

Score
10/10
blackmoonbankertrojan

Malware Config

Targets

    • Target

      d573bfc4f8016b5762aac81d5ea2c1fbcd402d70139482fc9b3e19daf3800e03

    • Size

      1.4MB

    • MD5

      19e6817b2fa1bae0e9e7cca721549835

    • SHA1

      91b66dd16e72111b478767ae0e5837988f50166b

    • SHA256

      d573bfc4f8016b5762aac81d5ea2c1fbcd402d70139482fc9b3e19daf3800e03

    • SHA512

      998adf86dd8380b8fc3daf28328e369e06fbeb30ecdc91650880d01549c971e3cf4613e5806345672c3acd59376e65e63437f201a8bd70b17013d2a6e24c3f32

    • SSDEEP

      24576:EWaBswTAEoKwlTD82CJy4VInpmVCfixrWxITZHCALkl4Njkiu2XOx2jo7dmPtzPD:+BsUAEvw435VInksQoIdHCkdG2X1oJCc

    Score
    10/10
    blackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks