blackmoon | bd71b42c8c01a382e6c72adc507f1ac9d0746ee85e0f2f4c221b18a18637502a | Triage

Submit
Reports

Overview

overview

Static

static

1

RSKIN_13.8.zip

windows7-x64

1

RSKIN_13.8.zip

windows10-2004-x64

Sharing

General

Target

RSKIN_13.8.zip
Size

2.4MB
Sample

230420-slvpgacf2w
MD5

8fd6f2c742a03ff8fb5c1b0fb211bc09
SHA1

c7aadd432a3b199c7fd1ececb9977dd416015898
SHA256

bd71b42c8c01a382e6c72adc507f1ac9d0746ee85e0f2f4c221b18a18637502a
SHA512

d099c0f080c2bb8d50e4ae95603d209e4d59c7f09d6b0b9ed851dc6bb6f6c639d2f00a9049992798b72f37e877add6758a8163dab1cf64e1f44c5012dd2c294b
SSDEEP

49152:nzPFtHLJoINxm61ctPISGS6HBPh9BhSDva9gQFdlFhZL0:nz/1aPvh6tSDva9gQvlFTL0

Score

10^/10

blackmoon banker trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

RSKIN_13.8.zip

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

RSKIN_13.8.zip

Resource

win10v2004-20230220-en

blackmoon banker trojan upx

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  RSKIN_13.8.zip
- Size
  
  2.4MB
- MD5
  
  8fd6f2c742a03ff8fb5c1b0fb211bc09
- SHA1
  
  c7aadd432a3b199c7fd1ececb9977dd416015898
- SHA256
  
  bd71b42c8c01a382e6c72adc507f1ac9d0746ee85e0f2f4c221b18a18637502a
- SHA512
  
  d099c0f080c2bb8d50e4ae95603d209e4d59c7f09d6b0b9ed851dc6bb6f6c639d2f00a9049992798b72f37e877add6758a8163dab1cf64e1f44c5012dd2c294b
- SSDEEP
  
  49152:nzPFtHLJoINxm61ctPISGS6HBPh9BhSDva9gQFdlFhZL0:nz/1aPvh6tSDva9gQvlFTL0
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy