Overview

overview

10

Static

static

3

54d7363ec8...2N.exe

windows7-x64

10

54d7363ec8...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    54d7363ec8556b4406c87bb95f44e1772c643884a65e761e54d423579651bef2N.exe

  • Size

    454KB

  • Sample

    241226-d362hawjhy

  • MD5

    1784a484f37c946ec7c82c7e4dd809d0

  • SHA1

    4bacd79211427c1fea95fadb75e1133f937e6c40

  • SHA256

    54d7363ec8556b4406c87bb95f44e1772c643884a65e761e54d423579651bef2

  • SHA512

    83653061c8f75e196b49314a8b6ccd928da1bb65827162adebbcbbf94b9d705f25a0f252ad3f9c9d5294aa3a9fdbb9fd945407e35f4c272f65cd60715f2c314e

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeB:q7Tc2NYHUrAwfMp3CDB

Score
10/10
blackmoonbankerdiscoverytrojanupx

Malware Config

Targets

    • Target

      54d7363ec8556b4406c87bb95f44e1772c643884a65e761e54d423579651bef2N.exe

    • Size

      454KB

    • MD5

      1784a484f37c946ec7c82c7e4dd809d0

    • SHA1

      4bacd79211427c1fea95fadb75e1133f937e6c40

    • SHA256

      54d7363ec8556b4406c87bb95f44e1772c643884a65e761e54d423579651bef2

    • SHA512

      83653061c8f75e196b49314a8b6ccd928da1bb65827162adebbcbbf94b9d705f25a0f252ad3f9c9d5294aa3a9fdbb9fd945407e35f4c272f65cd60715f2c314e

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeB:q7Tc2NYHUrAwfMp3CDB

    Score
    10/10
    blackmoonbankerdiscoverytrojanupx

    • Blackmoon family

      blackmoon

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks