blackmoon | 34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

34a1f653a9...8e.exe

windows7-x64

34a1f653a9...8e.exe

windows10-2004-x64

Sharing

General

Target

34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e
Size

15.6MB
Sample

230816-h294zsgf27
MD5

5b2079058dda0a74e90c72286618de48
SHA1

1759b16ace6c5ca3c53579c6e0f2da27499b140d
SHA256

34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e
SHA512

a436be16300346948b2cec200bd6ebe1f5e46b564df94aa3f5529e481ccd943a5e55d47fdd3622cb56abaceb2e5b8af17e69b1e3db0f9fe933daf0251e6245d1
SSDEEP

393216:qQFQlsK1xAvVFSXSYusfo8NcIfsr8QLCJ66:bFQlRKNlYun8UrFL666

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e.exe

Resource

win7-20230712-en

blackmoon banker trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e.exe

Resource

win10v2004-20230703-en

blackmoon banker trojan upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e
- Size
  
  15.6MB
- MD5
  
  5b2079058dda0a74e90c72286618de48
- SHA1
  
  1759b16ace6c5ca3c53579c6e0f2da27499b140d
- SHA256
  
  34a1f653a9a60f63d1efc783af8e451ee8166b4e764755dc4c73fa338c13e38e
- SHA512
  
  a436be16300346948b2cec200bd6ebe1f5e46b564df94aa3f5529e481ccd943a5e55d47fdd3622cb56abaceb2e5b8af17e69b1e3db0f9fe933daf0251e6245d1
- SSDEEP
  
  393216:qQFQlsK1xAvVFSXSYusfo8NcIfsr8QLCJ66:bFQlRKNlYun8UrFL666
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy