Overview

overview

10

Static

static

3

abd94fb208...7c.dll

windows7-x64

10

abd94fb208...7c.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    abd94fb20890ecf043b23790dc3893d013a0dcc8e1b67cf80180a0fa0221567c

  • Size

    1.6MB

  • Sample

    230629-zhw7fsfg9x

  • MD5

    d13836660471c2d4c14367d12fcefae4

  • SHA1

    f417fada4bcf66747415b9730393639d88e61a2c

  • SHA256

    abd94fb20890ecf043b23790dc3893d013a0dcc8e1b67cf80180a0fa0221567c

  • SHA512

    617e7da1b26fbc459b7be3e22cd4ceacd4c8e8a956270e7beebd38b9c97ffbc65789845fdb46ff09db9343f36f8f3e5c3e1a51cd3a22f406f0f27bab93307dc7

  • SSDEEP

    49152:+2pEZ2xMz0kKRSh5w4YSO3JVkjvez1af:JpvMTKRSh5wPSO7kCwf

Score
10/10
blackmoonbankertrojan

Malware Config

Targets

    • Target

      abd94fb20890ecf043b23790dc3893d013a0dcc8e1b67cf80180a0fa0221567c

    • Size

      1.6MB

    • MD5

      d13836660471c2d4c14367d12fcefae4

    • SHA1

      f417fada4bcf66747415b9730393639d88e61a2c

    • SHA256

      abd94fb20890ecf043b23790dc3893d013a0dcc8e1b67cf80180a0fa0221567c

    • SHA512

      617e7da1b26fbc459b7be3e22cd4ceacd4c8e8a956270e7beebd38b9c97ffbc65789845fdb46ff09db9343f36f8f3e5c3e1a51cd3a22f406f0f27bab93307dc7

    • SSDEEP

      49152:+2pEZ2xMz0kKRSh5w4YSO3JVkjvez1af:JpvMTKRSh5wPSO7kCwf

    Score
    10/10
    blackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks