Overview

overview

10

Static

static

7

68087093d2...b1.exe

windows7-x64

10

68087093d2...b1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68087093d2010d18fe23d1ad209f95da65512e0364262e1d1c7348992a1863b1.exe

  • Size

    401KB

  • Sample

    240520-ae5a8aad8t

  • MD5

    d8cd9bbc9a907ed2293eafc6fafd3960

  • SHA1

    f3e987bcba0917f75fac286c26af12c8c7dd33c8

  • SHA256

    68087093d2010d18fe23d1ad209f95da65512e0364262e1d1c7348992a1863b1

  • SHA512

    f725118a7da738b758991df15ba4ecaaf68fc51e013ec4feefc05649da8e6ad2aefc074cf8112cbf106ef65294817dc7861457a61103f5c40a8bd80bf3590962

  • SSDEEP

    6144:kcm4FmowdHoSph3Ymu8wdHoSM05d34iWRbzami3r:y4wFHoS3zuxHoSTd34iWRhib

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      68087093d2010d18fe23d1ad209f95da65512e0364262e1d1c7348992a1863b1.exe

    • Size

      401KB

    • MD5

      d8cd9bbc9a907ed2293eafc6fafd3960

    • SHA1

      f3e987bcba0917f75fac286c26af12c8c7dd33c8

    • SHA256

      68087093d2010d18fe23d1ad209f95da65512e0364262e1d1c7348992a1863b1

    • SHA512

      f725118a7da738b758991df15ba4ecaaf68fc51e013ec4feefc05649da8e6ad2aefc074cf8112cbf106ef65294817dc7861457a61103f5c40a8bd80bf3590962

    • SSDEEP

      6144:kcm4FmowdHoSph3Ymu8wdHoSM05d34iWRbzami3r:y4wFHoS3zuxHoSTd34iWRhib

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks