berbew | 73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122 | Triage

Submit
Reports

Overview

overview

Static

static

73fbd939fc...22.exe

windows7-x64

73fbd939fc...22.exe

windows10-2004-x64

Sharing

General

Target

73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122.exe
Size

288KB
Sample

240519-mqcrkaed93
MD5

1072f3fe0698ded76995769ccd44ce10
SHA1

d799d2fcc37e4570f24685890f94da37b2bf0550
SHA256

73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122
SHA512

e2de4ce85cb2374b33b4c60e16e6e2502974c012db1125ef750dceb8e82949ce5706ff9751b2a5bcd8a29e07bcd8185910664ce368bcff014c779ec574e0cc22
SSDEEP

6144:ccm4FmowdHoSQkuObHq9ltAszBd+za/p1slTjZXvEQo9dftOe:K4wFHoSQkuUHk1zBR/pMT9XvEhdfJ

Score

10^/10

berbew blackmoon backdoor banker dropper trojan upx

Static task

static1

upx backdoor trojan dropper berbew

4 signatures

Behavioral task

behavioral1

Sample

73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122.exe

Resource

win7-20240221-en

blackmoon backdoor banker dropper trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122.exe

Resource

win10v2004-20240508-en

blackmoon backdoor banker dropper trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122.exe
- Size
  
  288KB
- MD5
  
  1072f3fe0698ded76995769ccd44ce10
- SHA1
  
  d799d2fcc37e4570f24685890f94da37b2bf0550
- SHA256
  
  73fbd939fc3a4539c5b92b92eb2e4ffd4285f5aee438b36abcabb74640c56122
- SHA512
  
  e2de4ce85cb2374b33b4c60e16e6e2502974c012db1125ef750dceb8e82949ce5706ff9751b2a5bcd8a29e07bcd8185910664ce368bcff014c779ec574e0cc22
- SSDEEP
  
  6144:ccm4FmowdHoSQkuObHq9ltAszBd+za/p1slTjZXvEQo9dftOe:K4wFHoSQkuUHk1zBR/pMT9XvEhdfJ
Score

10^/10

blackmoon backdoor banker dropper trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Malware Dropper & Backdoor - Berbew
  Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.
  backdoor trojan dropper
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

upxbackdoortrojandropperberbew

behavioral1

blackmoonbackdoorbankerdroppertrojanupx

behavioral2

blackmoonbackdoorbankerdroppertrojanupx

© 2018-2024

Terms | Privacy