Overview

overview

10

Static

static

3

016b4780ce...a0.exe

windows7-x64

10

016b4780ce...a0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    016b4780ce21e159c54f8105c6a3b8a0.exe

  • Size

    54KB

  • Sample

    240519-lksp6acb6z

  • MD5

    016b4780ce21e159c54f8105c6a3b8a0

  • SHA1

    2930be7948378c9d75d6678ef7214ac5eead133a

  • SHA256

    0d91655b7895e4f473846a2918f1d89aad678da4919c23e5cb33ff60cef22f68

  • SHA512

    ac412bf3d3dac0e5c380fc34eb54229871d37dab44835a71dc169491ccbe6e2d597cf23b8b87fdae074fd6c6b4a9873aaa1b414c586a2aa18c05255ba6229408

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFz:ymb3NkkiQ3mdBjFIFz

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      016b4780ce21e159c54f8105c6a3b8a0.exe

    • Size

      54KB

    • MD5

      016b4780ce21e159c54f8105c6a3b8a0

    • SHA1

      2930be7948378c9d75d6678ef7214ac5eead133a

    • SHA256

      0d91655b7895e4f473846a2918f1d89aad678da4919c23e5cb33ff60cef22f68

    • SHA512

      ac412bf3d3dac0e5c380fc34eb54229871d37dab44835a71dc169491ccbe6e2d597cf23b8b87fdae074fd6c6b4a9873aaa1b414c586a2aa18c05255ba6229408

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFz:ymb3NkkiQ3mdBjFIFz

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks