Overview

overview

10

Static

static

7

d0c88ab8e0...32.exe

windows7-x64

10

d0c88ab8e0...32.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d0c88ab8e083d9663179422d635f6830_exe32.exe

  • Size

    93KB

  • Sample

    231015-yhbp3shb85

  • MD5

    d0c88ab8e083d9663179422d635f6830

  • SHA1

    8f7435b23bc4b5e1b06f5e6342bedde1a3d23875

  • SHA256

    13d604711a372633899fe528f82c5cfc35702aade521674eaac1eb43509df37b

  • SHA512

    5a08958738fc903301eb2cad90a940dfc2d0804ce648308b2ddda619ed7b6991d654cb2330949ae307663b49a09e17570c4756906c05d8fb10c6d58a62fc56d2

  • SSDEEP

    1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNlIQkPvA3qrEvO7C82kr0UlFxz:khOmTsF93UYfwC6GIoutpYcvrqrE66kf

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      d0c88ab8e083d9663179422d635f6830_exe32.exe

    • Size

      93KB

    • MD5

      d0c88ab8e083d9663179422d635f6830

    • SHA1

      8f7435b23bc4b5e1b06f5e6342bedde1a3d23875

    • SHA256

      13d604711a372633899fe528f82c5cfc35702aade521674eaac1eb43509df37b

    • SHA512

      5a08958738fc903301eb2cad90a940dfc2d0804ce648308b2ddda619ed7b6991d654cb2330949ae307663b49a09e17570c4756906c05d8fb10c6d58a62fc56d2

    • SSDEEP

      1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNlIQkPvA3qrEvO7C82kr0UlFxz:khOmTsF93UYfwC6GIoutpYcvrqrE66kf

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks