blackmoon | 6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05 | Triage

Submit
Reports

Overview

overview

Static

static

8

6794742de7...05.dll

windows7-x64

6794742de7...05.dll

windows10-2004-x64

Sharing

General

Target

6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05
Size

351KB
Sample

221129-j82xmabg69
MD5

1523e5e81a609842fc4847bfc38e9ec0
SHA1

d6f1713b2c7f96e9a6a70cbf9673ccf05d4c27a6
SHA256

6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05
SHA512

ca81966cacb4953359c076607899a2823cd9ca6377ed2f3e641047048f4648a67bcf341b52c4baa45ba2d22b51e650e12bf0426dfb9b6ba9fce4e1ed8ea696e5
SSDEEP

6144:3ypyJE1S5ND31zwdHlWbEaScp8FSBuRTY2o56oxW8eYkYM6y:3ysJE1SrDlzulWbEaNp8ABATY246oMTD

Score

10^/10

blackmoon banker trojan vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05.dll

Resource

win7-20221111-en

blackmoon banker trojan vmprotect

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05.dll

Resource

win10v2004-20221111-en

blackmoon banker trojan vmprotect

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05
- Size
  
  351KB
- MD5
  
  1523e5e81a609842fc4847bfc38e9ec0
- SHA1
  
  d6f1713b2c7f96e9a6a70cbf9673ccf05d4c27a6
- SHA256
  
  6794742de7b4ad9d85d8c9a0819a9d4e07febd77e8109783dd715b3296efee05
- SHA512
  
  ca81966cacb4953359c076607899a2823cd9ca6377ed2f3e641047048f4648a67bcf341b52c4baa45ba2d22b51e650e12bf0426dfb9b6ba9fce4e1ed8ea696e5
- SSDEEP
  
  6144:3ypyJE1S5ND31zwdHlWbEaScp8FSBuRTY2o56oxW8eYkYM6y:3ysJE1SrDlzulWbEaNp8ABATY246oMTD
Score

10^/10

blackmoon banker trojan vmprotect
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanvmprotect

behavioral2

blackmoonbankertrojanvmprotect

© 2018-2024

Terms | Privacy