blackmoon | dd65033cb5a83a313543d5df3fc5d5e5d330bad849ebdf06a1557cbb0f97cae6 | Triage

Submit
Reports

Overview

overview

Static

static

3

02327399.dll

windows7-x64

02327399.dll

windows10-2004-x64

8

Sharing

General

Target

02327399.exe
Size

1.5MB
Sample

230531-hscr5add66
MD5

dad2319407e97c0a7c0710f20f372174
SHA1

88dba32bc5c74e3e626146de773cf9f9f7fd811d
SHA256

dd65033cb5a83a313543d5df3fc5d5e5d330bad849ebdf06a1557cbb0f97cae6
SHA512

124fd8557665ae256bf55d0f81867c7f3467613a2862e52c86f65c715c5b97ebe28667486c7380d6739ac0ca12c9aead6811a0d4ecb7a0790e7c275e8e82bb77
SSDEEP

24576:5es8naZxDSTLsOo6MUieeX3bOvcjvemOaupMw1AVQCpA3x5MMaCkNdyNu:5jPD4LWRdeUSvcLOauVAVNp2aPd7

Score

10^/10

blackmoon banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

02327399.dll

Resource

win7-20230220-en

blackmoon banker trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

02327399.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  02327399.exe
- Size
  
  1.5MB
- MD5
  
  dad2319407e97c0a7c0710f20f372174
- SHA1
  
  88dba32bc5c74e3e626146de773cf9f9f7fd811d
- SHA256
  
  dd65033cb5a83a313543d5df3fc5d5e5d330bad849ebdf06a1557cbb0f97cae6
- SHA512
  
  124fd8557665ae256bf55d0f81867c7f3467613a2862e52c86f65c715c5b97ebe28667486c7380d6739ac0ca12c9aead6811a0d4ecb7a0790e7c275e8e82bb77
- SSDEEP
  
  24576:5es8naZxDSTLsOo6MUieeX3bOvcjvemOaupMw1AVQCpA3x5MMaCkNdyNu:5jPD4LWRdeUSvcLOauVAVNp2aPd7
Score

10^/10

blackmoon banker trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojan

behavioral2

© 2018-2024

Terms | Privacy