Overview

overview

10

Static

static

3

5a0c083d20...18.exe

windows7-x64

10

5a0c083d20...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a0c083d202fc25214955061d89bd9b8_JaffaCakes118

  • Size

    386KB

  • Sample

    240519-ppzaaahc55

  • MD5

    5a0c083d202fc25214955061d89bd9b8

  • SHA1

    94dd498665a8ada7a54753a0d853a7a91c50dde9

  • SHA256

    3e994c04ade87ffededbf38e4753a6560234e33ed1e439f5e3b5552f2ef08062

  • SHA512

    3318a258c1b41b8d94d5d5243befa55e25a140532f49eeea42565ba8a8a17952d88c92980ee2dceebbe8e3f663a2950d9af968bfa0cd03d6d477128cc55f9a68

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFw8TCvtcM72om:8cm7ImGddXmNt251UriZFwGCvVo

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      5a0c083d202fc25214955061d89bd9b8_JaffaCakes118

    • Size

      386KB

    • MD5

      5a0c083d202fc25214955061d89bd9b8

    • SHA1

      94dd498665a8ada7a54753a0d853a7a91c50dde9

    • SHA256

      3e994c04ade87ffededbf38e4753a6560234e33ed1e439f5e3b5552f2ef08062

    • SHA512

      3318a258c1b41b8d94d5d5243befa55e25a140532f49eeea42565ba8a8a17952d88c92980ee2dceebbe8e3f663a2950d9af968bfa0cd03d6d477128cc55f9a68

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFw8TCvtcM72om:8cm7ImGddXmNt251UriZFwGCvVo

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks