Overview

overview

10

Static

static

3

78a35712be...5N.exe

windows7-x64

10

78a35712be...5N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78a35712bea1d4d5764b2961204229ffb58eb5164771e264310750a0be6be2b5N

  • Size

    74KB

  • Sample

    240919-xd19havcln

  • MD5

    a99ea0baaff098042eb0cf15c7f5e1e0

  • SHA1

    38b575dce409c5fae6017c3f60910836c386ac51

  • SHA256

    78a35712bea1d4d5764b2961204229ffb58eb5164771e264310750a0be6be2b5

  • SHA512

    0b1afa913d14e66aac7bd9c70fd3a543822d5efe207e04b8213d7e1c8524b660624986fe0ecfaec0739980bb3fc79285141085ee797fc8a5479ba3e0765e9691

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHmPK:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHX

Score
10/10
blackmoonbankerdiscoverytrojanupx

Malware Config

Targets

    • Target

      78a35712bea1d4d5764b2961204229ffb58eb5164771e264310750a0be6be2b5N

    • Size

      74KB

    • MD5

      a99ea0baaff098042eb0cf15c7f5e1e0

    • SHA1

      38b575dce409c5fae6017c3f60910836c386ac51

    • SHA256

      78a35712bea1d4d5764b2961204229ffb58eb5164771e264310750a0be6be2b5

    • SHA512

      0b1afa913d14e66aac7bd9c70fd3a543822d5efe207e04b8213d7e1c8524b660624986fe0ecfaec0739980bb3fc79285141085ee797fc8a5479ba3e0765e9691

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLA89OGvrFVHmPK:ymb3NkkiQ3mdBjFIvl358nLA89OMFVHX

    Score
    10/10
    blackmoonbankerdiscoverytrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks