Overview

overview

10

Static

static

1

1ea550dc52...1c.dll

windows7-x64

10

1ea550dc52...1c.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1ea550dc522c591981333122ab79bfcc7dc75f4b566d9c7e69d3de8ad8922e1c

  • Size

    1.7MB

  • Sample

    230411-y1z6dsfb57

  • MD5

    8517eb670b4b169841cc95637010c7aa

  • SHA1

    2da5d0ce61f958b41e86359ddb6206dc76e67e98

  • SHA256

    1ea550dc522c591981333122ab79bfcc7dc75f4b566d9c7e69d3de8ad8922e1c

  • SHA512

    00ec817043125ed9bb087f1d61646a580eae6bb4df8245a403da4a79549a077b62257f3987d1285555e342f6dbf009449e4b0e98d3762fb41cfa39032d5bfa37

  • SSDEEP

    49152:eAtcJOLNVge7J9/dJIdkdCaNrWM3CQO7BVeYcmwCgD:cJENVl7J9Fykd5rWM2BVklCg

Score
10/10
blackmoonbankertrojan

Malware Config

Targets

    • Target

      1ea550dc522c591981333122ab79bfcc7dc75f4b566d9c7e69d3de8ad8922e1c

    • Size

      1.7MB

    • MD5

      8517eb670b4b169841cc95637010c7aa

    • SHA1

      2da5d0ce61f958b41e86359ddb6206dc76e67e98

    • SHA256

      1ea550dc522c591981333122ab79bfcc7dc75f4b566d9c7e69d3de8ad8922e1c

    • SHA512

      00ec817043125ed9bb087f1d61646a580eae6bb4df8245a403da4a79549a077b62257f3987d1285555e342f6dbf009449e4b0e98d3762fb41cfa39032d5bfa37

    • SSDEEP

      49152:eAtcJOLNVge7J9/dJIdkdCaNrWM3CQO7BVeYcmwCgD:cJENVl7J9Fykd5rWM2BVklCg

    Score
    10/10
    blackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks