Overview

overview

10

Static

static

3

a1dd0b0af2...36.exe

windows7-x64

10

a1dd0b0af2...36.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1dd0b0af2d9c7e40a9dd1651461d0d02e5d0e326b2eb96bcaac844e88aba736.exe

  • Size

    56KB

  • Sample

    240524-eksltscd3s

  • MD5

    1119de8e6d435ad08c4fa3f56724df80

  • SHA1

    788c1cfdd35597b5aa8b1b951618ea286bd537e6

  • SHA256

    a1dd0b0af2d9c7e40a9dd1651461d0d02e5d0e326b2eb96bcaac844e88aba736

  • SHA512

    1406225dba4a79c0ee943e02aeaeb08e2ac685f96e2add54b81ff5c747e896ef9033699d64863cc3f84b0fd0335b323b9bf93ca2be7be826f71e15ba31e9f8e0

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb6tZ9bA:ymb3NkkiQ3mdBjFIb6tZNA

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      a1dd0b0af2d9c7e40a9dd1651461d0d02e5d0e326b2eb96bcaac844e88aba736.exe

    • Size

      56KB

    • MD5

      1119de8e6d435ad08c4fa3f56724df80

    • SHA1

      788c1cfdd35597b5aa8b1b951618ea286bd537e6

    • SHA256

      a1dd0b0af2d9c7e40a9dd1651461d0d02e5d0e326b2eb96bcaac844e88aba736

    • SHA512

      1406225dba4a79c0ee943e02aeaeb08e2ac685f96e2add54b81ff5c747e896ef9033699d64863cc3f84b0fd0335b323b9bf93ca2be7be826f71e15ba31e9f8e0

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb6tZ9bA:ymb3NkkiQ3mdBjFIb6tZNA

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks