blackmoon | 50f0d3c53631efa2b454e2a505754fad8bb2f5706d7bb88477449a188e652f68 | Triage

Submit
Reports

Overview

overview

Static

static

1.exe

windows7_x64

1.exe

windows10-2004_x64

Sharing

General

Target

1.exe
Size

1.2MB
Sample

220624-mg3lmabfdq
MD5

f5aa803f52b91918139254834f6e21ce
SHA1

d5698a1014ab1193379af75609594f2bc0e54d80
SHA256

50f0d3c53631efa2b454e2a505754fad8bb2f5706d7bb88477449a188e652f68
SHA512

2633a85b200e133c13874c362786716d890082cdf1ef31ce2aaaffd5f24b962a3e66337ca15dfe4c679d6aec000fb8dfbec04714850c6c3adadf9fc680aece76

Score

10^/10

blackmoon banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

1.exe

Resource

win7-20220414-en

blackmoon banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1.exe

Resource

win10v2004-20220414-en

blackmoon banker trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  1.exe
- Size
  
  1.2MB
- MD5
  
  f5aa803f52b91918139254834f6e21ce
- SHA1
  
  d5698a1014ab1193379af75609594f2bc0e54d80
- SHA256
  
  50f0d3c53631efa2b454e2a505754fad8bb2f5706d7bb88477449a188e652f68
- SHA512
  
  2633a85b200e133c13874c362786716d890082cdf1ef31ce2aaaffd5f24b962a3e66337ca15dfe4c679d6aec000fb8dfbec04714850c6c3adadf9fc680aece76
Score

10^/10

blackmoon banker trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankertrojan

behavioral2

blackmoonbankertrojan

© 2018-2024

Terms | Privacy