Overview

overview

10

Static

static

3

aa0c454113...bb.exe

windows7-x64

10

aa0c454113...bb.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa0c454113290f64a7faab811d8e27f98fd7d58b08d22e208c984aa1d6ce7ebb.exe

  • Size

    483KB

  • Sample

    240524-fbtcfadg26

  • MD5

    29ab3c436993c7f0c3a55f9c4c729850

  • SHA1

    77cbaeea5edab68d8dfba5a463df648a8c588181

  • SHA256

    aa0c454113290f64a7faab811d8e27f98fd7d58b08d22e208c984aa1d6ce7ebb

  • SHA512

    da80a146f729c9274b0186491f1b558518f75ab3d7912237b71c4b8708a45072ccaee46ee6099bdb2cce80401f4a6419ca9f08c930d9ca9266016d36a9e29df0

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSizjZ:q7Tc2NYHUrAwqzcX

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      aa0c454113290f64a7faab811d8e27f98fd7d58b08d22e208c984aa1d6ce7ebb.exe

    • Size

      483KB

    • MD5

      29ab3c436993c7f0c3a55f9c4c729850

    • SHA1

      77cbaeea5edab68d8dfba5a463df648a8c588181

    • SHA256

      aa0c454113290f64a7faab811d8e27f98fd7d58b08d22e208c984aa1d6ce7ebb

    • SHA512

      da80a146f729c9274b0186491f1b558518f75ab3d7912237b71c4b8708a45072ccaee46ee6099bdb2cce80401f4a6419ca9f08c930d9ca9266016d36a9e29df0

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSizjZ:q7Tc2NYHUrAwqzcX

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks