Overview

overview

10

Static

static

3

4db8979b01...JC.exe

windows7-x64

10

4db8979b01...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4db8979b011478ca63a3f795170d9200_JC.exe

  • Size

    115KB

  • Sample

    231012-n6fntsgh91

  • MD5

    4db8979b011478ca63a3f795170d9200

  • SHA1

    ba14ed722a4d3e60f85e981d36130dfd26d98b29

  • SHA256

    6d2ead2bab2c56c2dfb4111aca756c3090ef0f708e59996b588ea2ff09aa1cef

  • SHA512

    062d03da2bd22f34126a0a90bba64a57868e27c079707e66047cceffa85393fc9a698fe653e66998a79c35f0533dbb0a606bfe697881fc7ac390c27ba0514f67

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzn6zDaE0RKDBEX6w0AV4Tz6:ymb3NkkiQ3mdBjFodt2zEUDBEX6w0ow2

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      4db8979b011478ca63a3f795170d9200_JC.exe

    • Size

      115KB

    • MD5

      4db8979b011478ca63a3f795170d9200

    • SHA1

      ba14ed722a4d3e60f85e981d36130dfd26d98b29

    • SHA256

      6d2ead2bab2c56c2dfb4111aca756c3090ef0f708e59996b588ea2ff09aa1cef

    • SHA512

      062d03da2bd22f34126a0a90bba64a57868e27c079707e66047cceffa85393fc9a698fe653e66998a79c35f0533dbb0a606bfe697881fc7ac390c27ba0514f67

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzn6zDaE0RKDBEX6w0AV4Tz6:ymb3NkkiQ3mdBjFodt2zEUDBEX6w0ow2

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks