Overview

overview

10

Static

static

3

de6d1b4cb2...32.exe

windows7-x64

10

de6d1b4cb2...32.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de6d1b4cb278322863910badf6aac670_exe32.exe

  • Size

    71KB

  • Sample

    231015-yh81ksfg9z

  • MD5

    de6d1b4cb278322863910badf6aac670

  • SHA1

    73800134a4e0e9f6056a4df7442d97b8ba325b9a

  • SHA256

    869abb054f3cda804bcf691e8c34a77052cbec1508d501c4aa86ccab4bc79459

  • SHA512

    73ec9edc0eb730918476a6fce2cc948b9f2c5845a98359c190c585d4bfaddcf6a0dc3ee7be929c983b5b8f1337d3b6aac544fd3e33eadc9951d5154065dead43

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdt9dy:ymb3NkkiQ3mdBjFIFdty

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      de6d1b4cb278322863910badf6aac670_exe32.exe

    • Size

      71KB

    • MD5

      de6d1b4cb278322863910badf6aac670

    • SHA1

      73800134a4e0e9f6056a4df7442d97b8ba325b9a

    • SHA256

      869abb054f3cda804bcf691e8c34a77052cbec1508d501c4aa86ccab4bc79459

    • SHA512

      73ec9edc0eb730918476a6fce2cc948b9f2c5845a98359c190c585d4bfaddcf6a0dc3ee7be929c983b5b8f1337d3b6aac544fd3e33eadc9951d5154065dead43

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdt9dy:ymb3NkkiQ3mdBjFIFdty

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks