Overview

overview

10

Static

static

10

63a2713a64448b_JC.exe

windows7-x64

10

63a2713a64448b_JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    63a2713a64448b_JC.exe

  • Size

    4.6MB

  • Sample

    230716-l6ck3afa3x

  • MD5

    63a2713a64448b4af1d9dc21e8e2dc28

  • SHA1

    7c398594fbf6b79f2da596ae56ffc58c22ef6bde

  • SHA256

    9db1e417ef82f93ef236661be788588a452dc31aa84c0374ed2384d3012915f9

  • SHA512

    14781b1ab038e0ffa2002d6001d5fb2f484bdebe20555096404e13e8c691b124cd2a824af138dafffdeda1253fabbfb510864bc70a173bc85a37a0d5e7534177

  • SSDEEP

    49152:nm6cNG+IkQmMASeMVE7nodtegbcrfoFeCvXqz53wJWqj2N3AJJ//A:m6cNrIk9MA5Ggnitegbc+eCkEGN

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      63a2713a64448b_JC.exe

    • Size

      4.6MB

    • MD5

      63a2713a64448b4af1d9dc21e8e2dc28

    • SHA1

      7c398594fbf6b79f2da596ae56ffc58c22ef6bde

    • SHA256

      9db1e417ef82f93ef236661be788588a452dc31aa84c0374ed2384d3012915f9

    • SHA512

      14781b1ab038e0ffa2002d6001d5fb2f484bdebe20555096404e13e8c691b124cd2a824af138dafffdeda1253fabbfb510864bc70a173bc85a37a0d5e7534177

    • SSDEEP

      49152:nm6cNG+IkQmMASeMVE7nodtegbcrfoFeCvXqz53wJWqj2N3AJJ//A:m6cNrIk9MA5Ggnitegbc+eCkEGN

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks