blackmoon | 57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425 | Triage

Submit
Reports

Overview

overview

Static

static

3

57d2555438...25.dll

windows7-x64

57d2555438...25.dll

windows10-2004-x64

Sharing

General

Target

57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425
Size

1.4MB
Sample

230629-zmlarafh51
MD5

b0eeb9ddc03bb0f2ef677fc1c756cc4e
SHA1

40d5349e77c4e01a0c1d2628616301ce21f8e479
SHA256

57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425
SHA512

ca9f9bad72b45d56f80fb5b199414246ffcd20afa2a4ef55a94bd3ada547077e995e4b6e6568d814a94b4661053afc892847e7d71eec3e18b582f5d0c921cb87
SSDEEP

24576:N58E90z5gLu8fV75D2rD8k8wdlVQal04rztQkpa5WSLTt9mCAzpjUT6k7MVOVTaH:dygLuMVYrDFLl0z7gSL2xQ6kEIehZv

Score

10^/10

blackmoon banker trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425.dll

Resource

win7-20230621-en

blackmoon banker trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425.dll

Resource

win10v2004-20230621-en

blackmoon banker trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425
- Size
  
  1.4MB
- MD5
  
  b0eeb9ddc03bb0f2ef677fc1c756cc4e
- SHA1
  
  40d5349e77c4e01a0c1d2628616301ce21f8e479
- SHA256
  
  57d2555438d69ce2f31f38bf09ac7fc3b536d272aa3eb50701d9e14a5f8bb425
- SHA512
  
  ca9f9bad72b45d56f80fb5b199414246ffcd20afa2a4ef55a94bd3ada547077e995e4b6e6568d814a94b4661053afc892847e7d71eec3e18b582f5d0c921cb87
- SSDEEP
  
  24576:N58E90z5gLu8fV75D2rD8k8wdlVQal04rztQkpa5WSLTt9mCAzpjUT6k7MVOVTaH:dygLuMVYrDFLl0z7gSL2xQ6kEIehZv
Score

10^/10

blackmoon banker trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Blocklisted process makes network request
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojan

behavioral2

blackmoonbankertrojan

© 2018-2024

Terms | Privacy