blackmoon | fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685 | Triage

Submit
Reports

Overview

overview

Static

static

8

fee045cc4b...85.dll

windows7-x64

fee045cc4b...85.dll

windows10-2004-x64

Sharing

General

Target

fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685
Size

358KB
Sample

221129-mleqcsdg6z
MD5

3e42b20fe559d7abc3daa666ffc581d0
SHA1

76e8346b73d9b86d2fc2aa5ac57326dc42be5f08
SHA256

fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685
SHA512

670948acf5e2da10be68666c2d559ae8c6a5d039ed49419ec21bbf64f00f0339124da5694282d0276d4c559512f42c33fbb021983477668a13f2dfd54aac33c4
SSDEEP

6144:qklQbs3kBMdnHSun9NmE0qfd6GlqNCfRto7umCW0nKS8oQL7e+HsSDbxf:/93kBIHSMKENFOCn+CWe8o6bMkbx

Score

10^/10

blackmoon banker trojan vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685.dll

Resource

win7-20220812-en

blackmoon banker trojan vmprotect

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685.dll

Resource

win10v2004-20220812-en

blackmoon banker trojan vmprotect

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685
- Size
  
  358KB
- MD5
  
  3e42b20fe559d7abc3daa666ffc581d0
- SHA1
  
  76e8346b73d9b86d2fc2aa5ac57326dc42be5f08
- SHA256
  
  fee045cc4bd2b1db0cc08b874eaa644502a977426639a4ed3892db0453227685
- SHA512
  
  670948acf5e2da10be68666c2d559ae8c6a5d039ed49419ec21bbf64f00f0339124da5694282d0276d4c559512f42c33fbb021983477668a13f2dfd54aac33c4
- SSDEEP
  
  6144:qklQbs3kBMdnHSun9NmE0qfd6GlqNCfRto7umCW0nKS8oQL7e+HsSDbxf:/93kBIHSMKENFOCn+CWe8o6bMkbx
Score

10^/10

blackmoon banker trojan vmprotect
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanvmprotect

behavioral2

blackmoonbankertrojanvmprotect

© 2018-2024

Terms | Privacy