blackmoon | 952d6801583d54f2454d761e37dda52b917a69ac822b1616c25b5b1cd663be70 | Triage

Submit
Reports

Overview

overview

Static

static

f8730c8c0d...18.exe

windows7-x64

f8730c8c0d...18.exe

windows10-2004-x64

Sharing

General

Target

f8730c8c0de2c36949c390adec6a34b1_JaffaCakes118
Size

4.5MB
Sample

240418-v4w2csae49
MD5

f8730c8c0de2c36949c390adec6a34b1
SHA1

269671ea6ad1753f482ee6ba7f044af815ba483b
SHA256

952d6801583d54f2454d761e37dda52b917a69ac822b1616c25b5b1cd663be70
SHA512

0573fb3461a15ac5242ac6b19c2e838ed99e159722146b3fe04db331f7d39aba629635a577f08ecb22557671322971761f352a2a16a8473419f025366e70667a
SSDEEP

49152:+lozaRGEgKs/5SP4cKgBhD1cK72HDPNUeFwbDQeq8Yy3FLpNGuoenW0Kny:WAaRGEfs/jxw77mPNU+SDQW9ceW0Ky

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

f8730c8c0de2c36949c390adec6a34b1_JaffaCakes118.exe

Resource

win7-20231129-en

blackmoon banker trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8730c8c0de2c36949c390adec6a34b1_JaffaCakes118.exe

Resource

win10v2004-20240412-en

blackmoon banker trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  f8730c8c0de2c36949c390adec6a34b1_JaffaCakes118
- Size
  
  4.5MB
- MD5
  
  f8730c8c0de2c36949c390adec6a34b1
- SHA1
  
  269671ea6ad1753f482ee6ba7f044af815ba483b
- SHA256
  
  952d6801583d54f2454d761e37dda52b917a69ac822b1616c25b5b1cd663be70
- SHA512
  
  0573fb3461a15ac5242ac6b19c2e838ed99e159722146b3fe04db331f7d39aba629635a577f08ecb22557671322971761f352a2a16a8473419f025366e70667a
- SSDEEP
  
  49152:+lozaRGEgKs/5SP4cKgBhD1cK72HDPNUeFwbDQeq8Yy3FLpNGuoenW0Kny:WAaRGEfs/jxw77mPNU+SDQW9ceW0Ky
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy