blackmoon | c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8 | Triage

Submit
Reports

Overview

overview

Static

static

3

c4b7ee6a21...e8.exe

windows7-x64

c4b7ee6a21...e8.exe

windows10-2004-x64

Sharing

General

Target

c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8
Size

312KB
Sample

240409-259r6sgh83
MD5

affbbe9b24f78ab4da6fdb9a52e56667
SHA1

9d482d2ccdf1ebb5d23e92f026b1da1994fff423
SHA256

c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8
SHA512

e9ce8f7d5785b1527bff05c809ca00a49ca1624ec448d88759cfc2bf6ad7c539fc0e4b3a183a1bd2ee1af77cbfd8e2fac1ad7835c88c8b9c9d27a680c243c5f8
SSDEEP

6144:n3C9BRo/AIX2h97aUzpbBj3+b2ziJC39QS8hDJd+Q7ZLbjwu:n3C9uDC97aUFbZ42ziM39QS8hDJd+Q77

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8.exe

Resource

win7-20240221-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8.exe

Resource

win10v2004-20240226-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8
- Size
  
  312KB
- MD5
  
  affbbe9b24f78ab4da6fdb9a52e56667
- SHA1
  
  9d482d2ccdf1ebb5d23e92f026b1da1994fff423
- SHA256
  
  c4b7ee6a2163b116d839f72ff38c6c0774ed6e83324664966a371fd416480de8
- SHA512
  
  e9ce8f7d5785b1527bff05c809ca00a49ca1624ec448d88759cfc2bf6ad7c539fc0e4b3a183a1bd2ee1af77cbfd8e2fac1ad7835c88c8b9c9d27a680c243c5f8
- SSDEEP
  
  6144:n3C9BRo/AIX2h97aUzpbBj3+b2ziJC39QS8hDJd+Q7ZLbjwu:n3C9uDC97aUFbZ42ziM39QS8hDJd+Q77
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy