6bfe04133efec7f31ba552baa927ca591952ecbe93045aac819d6eafb731c155 | Triage

Submit
Reports

Overview

overview

Static

static

6bfe04133e...55.dll

windows7-x64

6bfe04133e...55.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6bfe04133efec7f31ba552baa927ca591952ecbe93045aac819d6eafb731c155.dll

Resource

win7-20220812-en

blackmoon banker spyware stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6bfe04133efec7f31ba552baa927ca591952ecbe93045aac819d6eafb731c155.dll

Resource

win10v2004-20220812-en

blackmoon banker trojan

windows10-2004-x64

7 signatures

150 seconds

General

Target

6bfe04133efec7f31ba552baa927ca591952ecbe93045aac819d6eafb731c155
Size

1.9MB
MD5

15ec35a3307512acebb31e6a60c0ee67
SHA1

e4ae12b546edba663572468a4f2635c797f4ad6d
SHA256

6bfe04133efec7f31ba552baa927ca591952ecbe93045aac819d6eafb731c155
SHA512

d7726c895cfc75a5dea3e09e33c8dd7cbe265174be56aff55733dd0b0c0feed04c772a902afd1bd1db3f0140ade410ce0e7d67fccb647f9a14983616dcf31c42
SSDEEP

49152:yiId1HE+mdycSN/amOMDrYT67QTDJayVtMTswvAuyUv7+qR26o9T:yl6+c9WDKTDg34uh+QU

Score

N/A

Malware Config

Signatures

Files

6bfe04133efec7f31ba552baa927ca591952ecbe93045aac819d6eafb731c155
.dll windows x86

91e595de391a5221760defa709ba3495

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

midiStreamRestart

ws2_32

closesocket

rasapi32

RasHangUpA

user32

GetClassNameA

gdi32

ExtSelectClipRgn

winspool.drv

ClosePrinter

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

ole32

OleRun

oleaut32

SafeArrayAccessData

comctl32

ord17

wininet

InternetCloseHandle

comdlg32

ChooseColorA

Exports

Exports

xyztverify_VolcanoCore_Authorize
Э��½

Sections

.text
Size: 1.9MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy