blackmoon | cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d | Triage

Submit
Reports

Overview

overview

Static

static

cb80c32d2f...7d.exe

windows7-x64

cb80c32d2f...7d.exe

windows10-2004-x64

Sharing

General

Target

cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d
Size

1.4MB
Sample

221205-gf8tcsfb5v
MD5

f069af3bf6f9bc95b863ef6520c482cb
SHA1

ad6b1a78b2c29fc33585c7a8e714fc60825be268
SHA256

cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d
SHA512

8d37e7bb797047ce6b1ad6998ea0e4fb515be153ac3a5608b1da8e2bd318f549764d564509b15c964ab8fa31fb92ccb02424ad7891100b669f34eb1ff45f7ba0
SSDEEP

24576:nG5MAvRLUD9S0mgqDvn7UwOEhVQw0Ogp1O9y2XX2rHwECF4:GXYM0mgqDDcw0pgyK2Xw

Score

10^/10

blackmoon banker trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d.exe

Resource

win7-20220812-en

blackmoon banker trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d.exe

Resource

win10v2004-20220812-en

blackmoon banker trojan upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d
- Size
  
  1.4MB
- MD5
  
  f069af3bf6f9bc95b863ef6520c482cb
- SHA1
  
  ad6b1a78b2c29fc33585c7a8e714fc60825be268
- SHA256
  
  cb80c32d2f1bf7d590263d50e98bf726d130e957542689fda9671f55b732ec7d
- SHA512
  
  8d37e7bb797047ce6b1ad6998ea0e4fb515be153ac3a5608b1da8e2bd318f549764d564509b15c964ab8fa31fb92ccb02424ad7891100b669f34eb1ff45f7ba0
- SSDEEP
  
  24576:nG5MAvRLUD9S0mgqDvn7UwOEhVQw0Ogp1O9y2XX2rHwECF4:GXYM0mgqDDcw0pgyK2Xw
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy