Overview

overview

10

Static

static

3

451e330c80...8a.exe

windows7-x64

10

451e330c80...8a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    451e330c80f7784cb9c980c089252bf454e97bf29432caf7419971cefc44d38a

  • Size

    71KB

  • Sample

    241011-z12jwstgpc

  • MD5

    6d4c6b2b189aa2bae17b60322901f153

  • SHA1

    6978b0f8f3630a6ffa21c075f280086d0286d356

  • SHA256

    451e330c80f7784cb9c980c089252bf454e97bf29432caf7419971cefc44d38a

  • SHA512

    c5182059b9e8e21a61058775f70e752e3444fe87abac9c77ef1668b91ded616cf74f34c3a2ad2b35a7c1c2ae4ecbd926d8310e0bad94365f5b1b87264f5388be

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjF:ymb3NkkiQ3mdBjFI4VV

Score
10/10
blackmoonbankerdiscoverytrojanupx

Malware Config

Targets

    • Target

      451e330c80f7784cb9c980c089252bf454e97bf29432caf7419971cefc44d38a

    • Size

      71KB

    • MD5

      6d4c6b2b189aa2bae17b60322901f153

    • SHA1

      6978b0f8f3630a6ffa21c075f280086d0286d356

    • SHA256

      451e330c80f7784cb9c980c089252bf454e97bf29432caf7419971cefc44d38a

    • SHA512

      c5182059b9e8e21a61058775f70e752e3444fe87abac9c77ef1668b91ded616cf74f34c3a2ad2b35a7c1c2ae4ecbd926d8310e0bad94365f5b1b87264f5388be

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjF:ymb3NkkiQ3mdBjFI4VV

    Score
    10/10
    blackmoonbankerdiscoverytrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks