blackmoon | 0acb6500c0f62135d28021fc772a86aed77eba455465adc0d088c66932ece2d0 | Triage

Submit
Reports

Overview

overview

Static

static

1

tmp.exe

windows7-x64

tmp.exe

windows10-2004-x64

Sharing

General

Target

tmp
Size

10.0MB
Sample

230519-nav4msgc5t
MD5

09db16bbb023ca324bae100c625d1635
SHA1

444993b228e57c3cd58b64dddfd901f4bff77da3
SHA256

0acb6500c0f62135d28021fc772a86aed77eba455465adc0d088c66932ece2d0
SHA512

dfc8ae471c4d5ad67876ef259de9aaf3ced8ff65e0526641c7bc555cda8449ae95df1bc7cb246aabf5cabe3890e70795525386aefb19d98d1c2c36ced91917e1
SSDEEP

98304:xyvdNBhN3aeLgtV9J+UMhN2diFNJm2itQQEkf8dnjcmTvmMcZIuqdu7ATF+kMuGH:xUTarnMf2G+aQj8djcivVcETF+kMIC

Score

10^/10

blackmoon banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20230220-en

blackmoon banker trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20230220-en

blackmoon banker trojan

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  tmp
- Size
  
  10.0MB
- MD5
  
  09db16bbb023ca324bae100c625d1635
- SHA1
  
  444993b228e57c3cd58b64dddfd901f4bff77da3
- SHA256
  
  0acb6500c0f62135d28021fc772a86aed77eba455465adc0d088c66932ece2d0
- SHA512
  
  dfc8ae471c4d5ad67876ef259de9aaf3ced8ff65e0526641c7bc555cda8449ae95df1bc7cb246aabf5cabe3890e70795525386aefb19d98d1c2c36ced91917e1
- SSDEEP
  
  98304:xyvdNBhN3aeLgtV9J+UMhN2diFNJm2itQQEkf8dnjcmTvmMcZIuqdu7ATF+kMuGH:xUTarnMf2G+aQj8djcivVcETF+kMIC
Score

10^/10

blackmoon banker trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Downloads MZ/PE file
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankertrojan

behavioral2

blackmoonbankertrojan

© 2018-2024

Terms | Privacy