blackmoon | 45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd | Triage

Submit
Reports

Overview

overview

Static

static

8

45561bde03...bd.dll

windows7-x64

45561bde03...bd.dll

windows10-2004-x64

Sharing

General

Target

45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd
Size

357KB
Sample

221129-ldvaeafc99
MD5

aa06b652ae6ead6e39d6a9c7272704b0
SHA1

ad1688b6cd27e8f42800c6cb111625dbb92dd546
SHA256

45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd
SHA512

00fe1a92209e17a9967ddd5c27cb9aa5578757770dec982fca2732f5d023594301555f8b50f12066238b53b277aee513f3ace47a47de79daea182428b7c18b72
SSDEEP

6144:mUwCKjsgGkTWLC/dCQlg1ZJF/ubuBhuYSiyThglj/H5xmmvXUenBw:xw+LkOeg7bUuD7r3rH5xDXUe

Score

10^/10

blackmoon banker trojan vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd.dll

Resource

win7-20220812-en

blackmoon banker trojan vmprotect

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd.dll

Resource

win10v2004-20220812-en

blackmoon banker trojan vmprotect

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd
- Size
  
  357KB
- MD5
  
  aa06b652ae6ead6e39d6a9c7272704b0
- SHA1
  
  ad1688b6cd27e8f42800c6cb111625dbb92dd546
- SHA256
  
  45561bde036f7511c565822f93b971dbfb837e21fe7a55927be81390a507afbd
- SHA512
  
  00fe1a92209e17a9967ddd5c27cb9aa5578757770dec982fca2732f5d023594301555f8b50f12066238b53b277aee513f3ace47a47de79daea182428b7c18b72
- SSDEEP
  
  6144:mUwCKjsgGkTWLC/dCQlg1ZJF/ubuBhuYSiyThglj/H5xmmvXUenBw:xw+LkOeg7bUuD7r3rH5xDXUe
Score

10^/10

blackmoon banker trojan vmprotect
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanvmprotect

behavioral2

blackmoonbankertrojanvmprotect

© 2018-2024

Terms | Privacy