blackmoon | 93d97957ce5113fbda9dfdb10646e790df4b15f79ef5ff748131e48010f1c52a | Triage

Submit
Reports

Overview

overview

Static

static

DKCat 7.7.exe

windows7-x64

DKCat 7.7.exe

windows10-2004-x64

Sharing

General

Target

DKCat 7.7.exe
Size

17.4MB
Sample

230720-ne55eagb83
MD5

e0a0b8edf30dcdfee7590ced1dd6e8b5
SHA1

f4ce8e489cbbff3f625d3976404c16a24ead8c4c
SHA256

93d97957ce5113fbda9dfdb10646e790df4b15f79ef5ff748131e48010f1c52a
SHA512

a077695fa283625f7a76f235b3a06cd630b635a4f62529415de741def39dbd61f7804ebb4251f4841ab149d98014675a56979a3b05d6459a2aac9b670216d1ca
SSDEEP

393216:Bo8bw8WlwxsQiasvvLNOmYg3r3d51AyzmkiF1XZETT:K8bwVwqhasvvLNfpbN5aYgvpUT

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

DKCat 7.7.exe

Resource

win7-20230712-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

DKCat 7.7.exe

Resource

win10v2004-20230703-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  DKCat 7.7.exe
- Size
  
  17.4MB
- MD5
  
  e0a0b8edf30dcdfee7590ced1dd6e8b5
- SHA1
  
  f4ce8e489cbbff3f625d3976404c16a24ead8c4c
- SHA256
  
  93d97957ce5113fbda9dfdb10646e790df4b15f79ef5ff748131e48010f1c52a
- SHA512
  
  a077695fa283625f7a76f235b3a06cd630b635a4f62529415de741def39dbd61f7804ebb4251f4841ab149d98014675a56979a3b05d6459a2aac9b670216d1ca
- SSDEEP
  
  393216:Bo8bw8WlwxsQiasvvLNOmYg3r3d51AyzmkiF1XZETT:K8bwVwqhasvvLNfpbN5aYgvpUT
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy