Overview

overview

10

Static

static

7

413974a471...32.exe

windows7-x64

10

413974a471...32.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    413974a471448a5eb84b49a18b93cc80_exe32.exe

  • Size

    452KB

  • Sample

    231015-ybnq3abb91

  • MD5

    413974a471448a5eb84b49a18b93cc80

  • SHA1

    ba41caa8ef45a196490213a672faa3a38531a530

  • SHA256

    da82c25335fae3fe209426e0eb623c7c66bbacb0f68ae4c99c6b74a3cc48076e

  • SHA512

    5144b64a6ba2b598bc3c9266fb00dcb65a7a8c4b030c344458a67ef846b20b507d37792f6bb963707eb4fb7acfecec6c56df0887cdbcac65e08a0858543349b3

  • SSDEEP

    12288:64wFHoSJ1zBR/p2r8Cnkhdar2oGNLty6SDXaXIKJcnsjs0STADuO1ve5yqhD:MtBR/Mr8Cnkhdar2oGNLty6SDXaXIKJs

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      413974a471448a5eb84b49a18b93cc80_exe32.exe

    • Size

      452KB

    • MD5

      413974a471448a5eb84b49a18b93cc80

    • SHA1

      ba41caa8ef45a196490213a672faa3a38531a530

    • SHA256

      da82c25335fae3fe209426e0eb623c7c66bbacb0f68ae4c99c6b74a3cc48076e

    • SHA512

      5144b64a6ba2b598bc3c9266fb00dcb65a7a8c4b030c344458a67ef846b20b507d37792f6bb963707eb4fb7acfecec6c56df0887cdbcac65e08a0858543349b3

    • SSDEEP

      12288:64wFHoSJ1zBR/p2r8Cnkhdar2oGNLty6SDXaXIKJcnsjs0STADuO1ve5yqhD:MtBR/Mr8Cnkhdar2oGNLty6SDXaXIKJs

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks