blackmoon | 8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7 | Triage

Submit
Reports

Overview

overview

Static

static

8

8e66a800c6...d7.dll

windows7-x64

8e66a800c6...d7.dll

windows10-2004-x64

Sharing

General

Target

8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7
Size

361KB
Sample

221129-garynaae26
MD5

fe8c5f0de53e58b4212a85f5968aff20
SHA1

c3f311d403beeae864bad2f7457b28d1e07a46a1
SHA256

8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7
SHA512

6047534211236c2b5daa9791a9e75330a65974fc628fbd11bb482d9715ebd873325a195bd5ca7ebe771f603d6801b51ced633d9c4690e761fbe2d390fd25617e
SSDEEP

6144:3ypyJE1S5ND31zwdHlWbEaScp8FSBuRTY2o56oxW8eYkYM6y:3ysJE1SrDlzulWbEaNp8ABATY246oMTD

Score

10^/10

blackmoon banker trojan vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7.dll

Resource

win7-20220812-en

blackmoon banker trojan vmprotect

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7.dll

Resource

win10v2004-20220812-en

blackmoon banker trojan vmprotect

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7
- Size
  
  361KB
- MD5
  
  fe8c5f0de53e58b4212a85f5968aff20
- SHA1
  
  c3f311d403beeae864bad2f7457b28d1e07a46a1
- SHA256
  
  8e66a800c651d80f93578dff124f7cb87ba164b5b603d0118b7c6ea5f0d9f6d7
- SHA512
  
  6047534211236c2b5daa9791a9e75330a65974fc628fbd11bb482d9715ebd873325a195bd5ca7ebe771f603d6801b51ced633d9c4690e761fbe2d390fd25617e
- SSDEEP
  
  6144:3ypyJE1S5ND31zwdHlWbEaScp8FSBuRTY2o56oxW8eYkYM6y:3ysJE1SrDlzulWbEaNp8ABATY246oMTD
Score

10^/10

blackmoon banker trojan vmprotect
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanvmprotect

behavioral2

blackmoonbankertrojanvmprotect

© 2018-2024

Terms | Privacy