Overview

overview

10

Static

static

3

ed9fa6920a...in.exe

windows7-x64

10

ed9fa6920a...in.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ed9fa6920aea0d6e6c8b2bb811d61a70.exe.bin.exe

  • Size

    273KB

  • Sample

    240518-t4bjzscf5s

  • MD5

    ed9fa6920aea0d6e6c8b2bb811d61a70

  • SHA1

    bb5c183467fd1f27d2a09171ff0142ebbf612652

  • SHA256

    bfe31cc34bcbe10d7c8cbd6e4178365c8cdf3dcd68736e34bfb4c0cd991de031

  • SHA512

    ed9172e7c0e5c288d069de82a198e0404d5d2822ce823e3e01f231ef985f085250b1dba1e73bbff545bbb4039ffaefd9bbcf6c94a8a7e007810537d94d938985

  • SSDEEP

    6144:n3C9BRIG0asYFm71m8+GdkB9yMu7VvemT:n3C9uYA71kSMuh

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      ed9fa6920aea0d6e6c8b2bb811d61a70.exe.bin.exe

    • Size

      273KB

    • MD5

      ed9fa6920aea0d6e6c8b2bb811d61a70

    • SHA1

      bb5c183467fd1f27d2a09171ff0142ebbf612652

    • SHA256

      bfe31cc34bcbe10d7c8cbd6e4178365c8cdf3dcd68736e34bfb4c0cd991de031

    • SHA512

      ed9172e7c0e5c288d069de82a198e0404d5d2822ce823e3e01f231ef985f085250b1dba1e73bbff545bbb4039ffaefd9bbcf6c94a8a7e007810537d94d938985

    • SSDEEP

      6144:n3C9BRIG0asYFm71m8+GdkB9yMu7VvemT:n3C9uYA71kSMuh

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks