Overview

overview

10

Static

static

3

netbri.exe

windows7-x64

10

netbri.exe

windows10-2004-x64

10

repair.exe

windows7-x64

1

repair.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    D1Softwaredata.zip

  • Size

    13.5MB

  • Sample

    230623-sfzq8sgh5w

  • MD5

    f09a6b3e7e51ca8105fa185d485271bd

  • SHA1

    46639af5bcc90857e8f0b3b5bd55994d8fa50396

  • SHA256

    c4b963d33c85443673d172e9b031fe7507e079f486b253ad086973583f7da110

  • SHA512

    2d55e6f7b8f9558dcb9b37c415e88394eee9a0de8a56785b06c75f492ab4124dde8e6f3f4f76e84f70708ead1bde55416b9337a8a87d985c2e7dca68dd437f74

  • SSDEEP

    393216:j7n+S5wPwarn49Fl7gcqv+l9T1UuD4rWwOvK1:XP5wR4rW3v+lDUZOy1

Score
10/10
blackmoonbankertrojan

Malware Config

Targets

    • Target

      netbri.exe

    • Size

      700KB

    • MD5

      a165e1db0ff449c3752a6959598d925f

    • SHA1

      f122e6063f883bd071d4eb19527fdb39ffbd8033

    • SHA256

      e3998468214b36f97454b9b8fb698cf8afa374522d7663ca979fcf7dd86e427e

    • SHA512

      9b7839e3e56039b62c0c94c8bcbd00f5c92f9613c1a605a3226d38646991d763c09787618314647c9dad94d39323bb1827710aa6eff43f85bd20e2a700b50455

    • SSDEEP

      12288:DLnnGUbSWxIDCBoOd1x29v2aDpB9gf3XgaFN9gX08Oujawx021njLgnJRv:PnnGDWxImBoOd1xIv2ad/s3Xg4YE8O6o

    Score
    10/10
    blackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    behavioral1behavioral2

    • Target

      repair.exe

    • Size

      792KB

    • MD5

      0790e644e762bba5783bbd8a61aed38e

    • SHA1

      92686f13e210c0d41530473199f70b3dc952e666

    • SHA256

      66779c8d154621c2741fa2f1eefcb0bde4552a92fa2b9656d275b34a253e3dc5

    • SHA512

      0c09e28f36f2695e556f524575cf8eede730fa27dc5eff49dfaddd3775ec9c8da070c948babf65a61f8265aec78a53e469d6bb0afdd33f4c8c902876e5a140c4

    • SSDEEP

      12288:kkyfEmozYLlQSz3MTsrrqeVJOdJnQqToEY1UVHm2:kXfEmozyMYrOeudG+zY1UVG2

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks