Overview

overview

10

Static

static

7

3c4a380899...6b.exe

windows7-x64

10

3c4a380899...6b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c4a380899eb38b9ab7bdf03ccb006e3f513802b332a1de40e508f38fd776c6b.exe

  • Size

    367KB

  • Sample

    240519-l9mv7sdf34

  • MD5

    0afba024979d2664e9d2496a8e682150

  • SHA1

    11a47351103ad265f6e446a1398a09f96a4ff0ec

  • SHA256

    3c4a380899eb38b9ab7bdf03ccb006e3f513802b332a1de40e508f38fd776c6b

  • SHA512

    75c687779453b2a0e47e7a88f893454f74c6ae4777ea901918a735f6d0ff4702abc4b6cd6c572557e4a7cb4c70e068895e5e2b343d9a8f93fa09b8d92e8e802d

  • SSDEEP

    6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSM/x55:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZG

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3c4a380899eb38b9ab7bdf03ccb006e3f513802b332a1de40e508f38fd776c6b.exe

    • Size

      367KB

    • MD5

      0afba024979d2664e9d2496a8e682150

    • SHA1

      11a47351103ad265f6e446a1398a09f96a4ff0ec

    • SHA256

      3c4a380899eb38b9ab7bdf03ccb006e3f513802b332a1de40e508f38fd776c6b

    • SHA512

      75c687779453b2a0e47e7a88f893454f74c6ae4777ea901918a735f6d0ff4702abc4b6cd6c572557e4a7cb4c70e068895e5e2b343d9a8f93fa09b8d92e8e802d

    • SSDEEP

      6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSM/x55:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZG

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks