Overview

overview

10

Static

static

10

2023-08-22...JC.exe

windows7-x64

10

2023-08-22...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2023-08-22_e51b6d58e617cc300d341df0f8dfd234_hacktools_icedid_JC.exe

  • Size

    15.3MB

  • Sample

    230903-q58pbsag27

  • MD5

    e51b6d58e617cc300d341df0f8dfd234

  • SHA1

    279f497aecff88f6fda8cc712f7db4b32ab770eb

  • SHA256

    f4c3fcab73136ced9e7d147af2a68c169ead4117bd545e9ffa779314a85325cc

  • SHA512

    166dd4e8af8f0f36289f1b3a4db520698f5f1e890ff37e1ea8f266f812c624cb2639b23d329aa823d32bf6a7e2308232246302a0c6d142754425820103234fa9

  • SSDEEP

    196608:JRNBKKAZBuaAVp2k8Dfl1BjF9sT2fZCh7ri4RlstTfgNExN4bhfmJVDdo:p0rBdAVgk+XJMisutTfawKexo

Score
10/10
blackmoonbankertrojanvmprotect

Malware Config

Targets

    • Target

      2023-08-22_e51b6d58e617cc300d341df0f8dfd234_hacktools_icedid_JC.exe

    • Size

      15.3MB

    • MD5

      e51b6d58e617cc300d341df0f8dfd234

    • SHA1

      279f497aecff88f6fda8cc712f7db4b32ab770eb

    • SHA256

      f4c3fcab73136ced9e7d147af2a68c169ead4117bd545e9ffa779314a85325cc

    • SHA512

      166dd4e8af8f0f36289f1b3a4db520698f5f1e890ff37e1ea8f266f812c624cb2639b23d329aa823d32bf6a7e2308232246302a0c6d142754425820103234fa9

    • SSDEEP

      196608:JRNBKKAZBuaAVp2k8Dfl1BjF9sT2fZCh7ri4RlstTfgNExN4bhfmJVDdo:p0rBdAVgk+XJMisutTfawKexo

    Score
    10/10
    blackmoonbankertrojanvmprotect

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks