Overview

overview

10

Static

static

7

32f46b134e...3N.exe

windows7-x64

10

32f46b134e...3N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    32f46b134e4cfe0a9b3e0b9770b3740d09360ccfdf48022aa65482820d0ccd63N

  • Size

    460KB

  • Sample

    240919-gfyy6atcpe

  • MD5

    e6ceb161f79574f72b48a93f25148f80

  • SHA1

    67c199e652930fe998599a05db596f479e4fcfad

  • SHA256

    32f46b134e4cfe0a9b3e0b9770b3740d09360ccfdf48022aa65482820d0ccd63

  • SHA512

    75b090cccf97271294ff098d347b0aeb99902cf0c3ee78ae72f192dad1e40382fffb79f496e2f7bdaa232623e089274341ecc41f06559dc0687b82333d40d474

  • SSDEEP

    12288:J4wFHoSTeR0oQRkay+eFp3IDvSbh5nPVP+OKaf1VM:VeR0oykayRFp3lztP+OKaf1VM

Score
10/10
blackmoonbankerdiscoverytrojanupx

Malware Config

Targets

    • Target

      32f46b134e4cfe0a9b3e0b9770b3740d09360ccfdf48022aa65482820d0ccd63N

    • Size

      460KB

    • MD5

      e6ceb161f79574f72b48a93f25148f80

    • SHA1

      67c199e652930fe998599a05db596f479e4fcfad

    • SHA256

      32f46b134e4cfe0a9b3e0b9770b3740d09360ccfdf48022aa65482820d0ccd63

    • SHA512

      75b090cccf97271294ff098d347b0aeb99902cf0c3ee78ae72f192dad1e40382fffb79f496e2f7bdaa232623e089274341ecc41f06559dc0687b82333d40d474

    • SSDEEP

      12288:J4wFHoSTeR0oQRkay+eFp3IDvSbh5nPVP+OKaf1VM:VeR0oykayRFp3lztP+OKaf1VM

    Score
    10/10
    blackmoonbankerdiscoverytrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks