blackmoon | a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

8

a6839c3f7a...b6.exe

windows7-x64

a6839c3f7a...b6.exe

windows10-2004-x64

Sharing

General

Target

a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6
Size

62KB
Sample

221107-gbslksagg4
MD5

12572e804d954c1b67fc8c4aabafc870
SHA1

d19a99d7ad024bd67bad339e7e1f4cf08f9ebdae
SHA256

a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6
SHA512

47266c0418e04ebc5b8985ad238969dc38e6ef190153fc27d636d49250c86a00ef1874e3a50e17af914bc8d94f1c9919a1118c6b8bccf9b0a5c470d5b0530e07
SSDEEP

1536:0vQBeOGtrYS3srx93UBWfwC6Ggnouy8CUYj7qQAN:0hOmTsF93UYfwC6GIoutX0O

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6.exe

Resource

win7-20220812-en

blackmoon banker trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6.exe

Resource

win10v2004-20220812-en

blackmoon banker trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6
- Size
  
  62KB
- MD5
  
  12572e804d954c1b67fc8c4aabafc870
- SHA1
  
  d19a99d7ad024bd67bad339e7e1f4cf08f9ebdae
- SHA256
  
  a6839c3f7a1951e733a0fc64c80e48c0e9e3c99f261d257e8175ce0d276736b6
- SHA512
  
  47266c0418e04ebc5b8985ad238969dc38e6ef190153fc27d636d49250c86a00ef1874e3a50e17af914bc8d94f1c9919a1118c6b8bccf9b0a5c470d5b0530e07
- SSDEEP
  
  1536:0vQBeOGtrYS3srx93UBWfwC6Ggnouy8CUYj7qQAN:0hOmTsF93UYfwC6GIoutX0O
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy