Overview

overview

10

Static

static

7

16a14c4b23...f9.exe

windows7-x64

7

16a14c4b23...f9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16a14c4b23010c595e69feff16d88533a2b7850cef117c90ca9b9493441997f9

  • Size

    6.7MB

  • Sample

    240522-e3kzpsca64

  • MD5

    983330f83bd0f5180f67510d85ca1d01

  • SHA1

    7517d036fb91981c73bcf1e5eba9db9c90dfd4ee

  • SHA256

    16a14c4b23010c595e69feff16d88533a2b7850cef117c90ca9b9493441997f9

  • SHA512

    55e550bcbf024a8bb0338611935adc40c7a60240c851e8c9b2666f5690f27c472607867fdb312634e9de6038d4eb3b6ae2f0ab20447ae51642c48f097cdc8726

  • SSDEEP

    196608:vi8VUfnG9Xz7WJqxEKRVMhKe9OGW2SF1c4p5EWjKP:vHVSnc7WJqFY9WZPV+

Score
10/10
blackmoonbankertrojanvmprotect

Malware Config

Targets

    • Target

      16a14c4b23010c595e69feff16d88533a2b7850cef117c90ca9b9493441997f9

    • Size

      6.7MB

    • MD5

      983330f83bd0f5180f67510d85ca1d01

    • SHA1

      7517d036fb91981c73bcf1e5eba9db9c90dfd4ee

    • SHA256

      16a14c4b23010c595e69feff16d88533a2b7850cef117c90ca9b9493441997f9

    • SHA512

      55e550bcbf024a8bb0338611935adc40c7a60240c851e8c9b2666f5690f27c472607867fdb312634e9de6038d4eb3b6ae2f0ab20447ae51642c48f097cdc8726

    • SSDEEP

      196608:vi8VUfnG9Xz7WJqxEKRVMhKe9OGW2SF1c4p5EWjKP:vHVSnc7WJqFY9WZPV+

    Score
    10/10
    vmprotectblackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks