Overview

overview

10

Static

static

3

ee074aaf85...in.exe

windows7-x64

10

ee074aaf85...in.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee074aaf85f23ec4eff9dce226d420a0.exe.bin.exe

  • Size

    277KB

  • Sample

    240518-t7g6yach4y

  • MD5

    ee074aaf85f23ec4eff9dce226d420a0

  • SHA1

    73d6d903f6b54e162326ad35aaf467afa4b1afa5

  • SHA256

    971d925bc94769fe02b75e32f95bd6085e5dd981cf16226fbda944059f1f7d6f

  • SHA512

    0f02c7e4126a484099715ab4f7f4dec77948f49f7351225eade16b861e74c576242221d133fcc89c7f79250b1b4fee7b165e194689ceb59c0817e3369622fc7c

  • SSDEEP

    6144:n3C9BRIG0asYFm71m8+GdkB9yMu7VvemX:n3C9uYA71kSMuF

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      ee074aaf85f23ec4eff9dce226d420a0.exe.bin.exe

    • Size

      277KB

    • MD5

      ee074aaf85f23ec4eff9dce226d420a0

    • SHA1

      73d6d903f6b54e162326ad35aaf467afa4b1afa5

    • SHA256

      971d925bc94769fe02b75e32f95bd6085e5dd981cf16226fbda944059f1f7d6f

    • SHA512

      0f02c7e4126a484099715ab4f7f4dec77948f49f7351225eade16b861e74c576242221d133fcc89c7f79250b1b4fee7b165e194689ceb59c0817e3369622fc7c

    • SSDEEP

      6144:n3C9BRIG0asYFm71m8+GdkB9yMu7VvemX:n3C9uYA71kSMuF

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks