blackmoon | 8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9 | Triage

Submit
Reports

Overview

overview

Static

static

8d4feb38da...f9.exe

windows7-x64

8d4feb38da...f9.exe

windows10-2004-x64

Sharing

General

Target

8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9
Size

88KB
Sample

240509-brjeysda79
MD5

47033b05cade1ffa6ee73f3ec1bc5612
SHA1

d8bd1e49d64d2f961b023977b5d75b09cac931cc
SHA256

8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9
SHA512

7c67653504d7d06a0782b8fa3b5adfa7630096a232081a44124cff489067b0de5337688c3f64dcca926a0f6460168c3d627e13fdab359bf68a0cc019487f8fe4
SSDEEP

1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+rX:chOmTsF93UYfwC6GIoutieyhC2lbgGim

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9.exe

Resource

win7-20240220-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9.exe

Resource

win10v2004-20240426-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9
- Size
  
  88KB
- MD5
  
  47033b05cade1ffa6ee73f3ec1bc5612
- SHA1
  
  d8bd1e49d64d2f961b023977b5d75b09cac931cc
- SHA256
  
  8d4feb38daaf4dd837b5ea416d9ad9a5152d6eb45e6e3895ce0dd225d1d604f9
- SHA512
  
  7c67653504d7d06a0782b8fa3b5adfa7630096a232081a44124cff489067b0de5337688c3f64dcca926a0f6460168c3d627e13fdab359bf68a0cc019487f8fe4
- SSDEEP
  
  1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+rX:chOmTsF93UYfwC6GIoutieyhC2lbgGim
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy