Overview

overview

10

Static

static

7

6d1d545827...5a.exe

windows7-x64

10

6d1d545827...5a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6d1d545827eefe2dece72713def53d14c8b89e50ee77bf29b1b0cb33e6a5945a.exe

  • Size

    361KB

  • Sample

    240519-mnxzqaed65

  • MD5

    07886342d86b22b062ac91f6f660fbf0

  • SHA1

    26dba4a66dcac15e1e98c2c5f2755bac77fa740a

  • SHA256

    6d1d545827eefe2dece72713def53d14c8b89e50ee77bf29b1b0cb33e6a5945a

  • SHA512

    0fbe868e453f6f3751cb61fba2281ec7998e76abeb271180f43819aed3b2b6377d66b0b9d1d2e7af9c7c402bbd32bb234a20b6b93f5dfb48dee2a83f149a1586

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwu1b26X1wjhtSizjh:R4wFHoSHYHUrAwqzc3

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      6d1d545827eefe2dece72713def53d14c8b89e50ee77bf29b1b0cb33e6a5945a.exe

    • Size

      361KB

    • MD5

      07886342d86b22b062ac91f6f660fbf0

    • SHA1

      26dba4a66dcac15e1e98c2c5f2755bac77fa740a

    • SHA256

      6d1d545827eefe2dece72713def53d14c8b89e50ee77bf29b1b0cb33e6a5945a

    • SHA512

      0fbe868e453f6f3751cb61fba2281ec7998e76abeb271180f43819aed3b2b6377d66b0b9d1d2e7af9c7c402bbd32bb234a20b6b93f5dfb48dee2a83f149a1586

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwu1b26X1wjhtSizjh:R4wFHoSHYHUrAwqzc3

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks