Overview

overview

10

Static

static

3

d0d07b2d48...0N.exe

windows7-x64

10

d0d07b2d48...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d0d07b2d481fcde273d83aac535426b0N.exe

  • Size

    260KB

  • Sample

    240715-nq5ysaxcpd

  • MD5

    d0d07b2d481fcde273d83aac535426b0

  • SHA1

    883d0e138cbd3672ae195e0340083b5d8a3dda28

  • SHA256

    4ac6e26494d84696f8eb156d3b6a2b8bf525efce893f43d80e2505424cbb74e0

  • SHA512

    43fcad8ab52e3a8796bf3d2cbe0a05f41653ec22f09b960984e0a7a35db197ef4043e3a2611d97c41294905857e4ba4dd10434a4d9795d1621730d4c0d48f3c3

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0q1:n3C9ytvn8whkb4i3e3GF/1

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      d0d07b2d481fcde273d83aac535426b0N.exe

    • Size

      260KB

    • MD5

      d0d07b2d481fcde273d83aac535426b0

    • SHA1

      883d0e138cbd3672ae195e0340083b5d8a3dda28

    • SHA256

      4ac6e26494d84696f8eb156d3b6a2b8bf525efce893f43d80e2505424cbb74e0

    • SHA512

      43fcad8ab52e3a8796bf3d2cbe0a05f41653ec22f09b960984e0a7a35db197ef4043e3a2611d97c41294905857e4ba4dd10434a4d9795d1621730d4c0d48f3c3

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0q1:n3C9ytvn8whkb4i3e3GF/1

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks