blackmoon | 93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35 | Triage

Submit
Reports

Overview

overview

Static

static

3

93d35c3a4a...35.exe

windows7-x64

93d35c3a4a...35.exe

windows10-2004-x64

Sharing

General

Target

93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35
Size

388KB
Sample

230623-tkmg5shb3w
MD5

0957eaf2f20926b34b52c1bbb75357a8
SHA1

4aaff118476beebdd9660d37ab73d38ea8ab0af9
SHA256

93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35
SHA512

e7f1345765831ca8c5963bf498b80c7293a25e2fb974fa6bc824a276110f2c14c5286993ee765a8b2eb99b2af3c0bc56447c56f497d8ad11ddcd43fe70d9aab4
SSDEEP

6144:KTu9kALUo0bF0sB7GHWAgV6fOfohGWaTQMIX1:2u9NIo38KHR0fofB1

Score

10^/10

blackmoon banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35.exe

Resource

win7-20230621-en

blackmoon banker trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35.exe

Resource

win10v2004-20230621-en

blackmoon banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35
- Size
  
  388KB
- MD5
  
  0957eaf2f20926b34b52c1bbb75357a8
- SHA1
  
  4aaff118476beebdd9660d37ab73d38ea8ab0af9
- SHA256
  
  93d35c3a4af797bf6dbbafdc41ddef43ff3994f733519fe38fbd52d04df3ba35
- SHA512
  
  e7f1345765831ca8c5963bf498b80c7293a25e2fb974fa6bc824a276110f2c14c5286993ee765a8b2eb99b2af3c0bc56447c56f497d8ad11ddcd43fe70d9aab4
- SSDEEP
  
  6144:KTu9kALUo0bF0sB7GHWAgV6fOfohGWaTQMIX1:2u9NIo38KHR0fofB1
Score

10^/10

blackmoon banker trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankertrojan

behavioral2

blackmoonbankertrojan

© 2018-2024

Terms | Privacy