Overview

overview

10

Static

static

3

c103af4d42...2N.exe

windows7-x64

10

c103af4d42...2N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c103af4d4274c77a51f03dfd2738a62f9327ebc888578c4731c29286f209b972N

  • Size

    249KB

  • Sample

    241009-p1b9wsyhkb

  • MD5

    b15e61e4fed210a82c1dc2ff8e474230

  • SHA1

    2ff1faf405349b1cd130237b6439582abe4002b9

  • SHA256

    c103af4d4274c77a51f03dfd2738a62f9327ebc888578c4731c29286f209b972

  • SHA512

    328ec9a29bcdfecc07f3285420fd8d32bac49ed9f79f88d255c0e8577020beceb3cce656de28b565640a03181fae889638f2bdef2d1cc4d16f45ebc624794362

  • SSDEEP

    6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRlRe:n3C9uD6AUDCa4NYmRDe

Score
10/10
blackmoonbankerdiscoverytrojanupx

Malware Config

Targets

    • Target

      c103af4d4274c77a51f03dfd2738a62f9327ebc888578c4731c29286f209b972N

    • Size

      249KB

    • MD5

      b15e61e4fed210a82c1dc2ff8e474230

    • SHA1

      2ff1faf405349b1cd130237b6439582abe4002b9

    • SHA256

      c103af4d4274c77a51f03dfd2738a62f9327ebc888578c4731c29286f209b972

    • SHA512

      328ec9a29bcdfecc07f3285420fd8d32bac49ed9f79f88d255c0e8577020beceb3cce656de28b565640a03181fae889638f2bdef2d1cc4d16f45ebc624794362

    • SSDEEP

      6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRlRe:n3C9uD6AUDCa4NYmRDe

    Score
    10/10
    blackmoonbankerdiscoverytrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks