blackmoon | 26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea | Triage

Submit
Reports

Overview

overview

Static

static

26813fdd7a...ea.exe

windows7-x64

26813fdd7a...ea.exe

windows10-2004-x64

Sharing

General

Target

26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea
Size

81KB
Sample

240518-yd8h9ace52
MD5

0fc9354d1908d82a25f65d0297647e85
SHA1

9b6ddae41d4b0fc61ef646c5fd9f04b748285ad1
SHA256

26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea
SHA512

3f11efd441db45f01f59034a29e450097fa32089735b69dba28d31cff8a59ae8d42d48bb3beb264ba3a503a7f2c936d53b42e31d043461d8f26acb78cebe84cb
SSDEEP

1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7Q2:zhOmTsF93UYfwC6GIoutiTU2HVS63Q2

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea.exe

Resource

win7-20240508-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea
- Size
  
  81KB
- MD5
  
  0fc9354d1908d82a25f65d0297647e85
- SHA1
  
  9b6ddae41d4b0fc61ef646c5fd9f04b748285ad1
- SHA256
  
  26813fdd7a793817dba2bfe269f749e5c8d4fb3a3a2814ac49d87c08400985ea
- SHA512
  
  3f11efd441db45f01f59034a29e450097fa32089735b69dba28d31cff8a59ae8d42d48bb3beb264ba3a503a7f2c936d53b42e31d043461d8f26acb78cebe84cb
- SSDEEP
  
  1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7Q2:zhOmTsF93UYfwC6GIoutiTU2HVS63Q2
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy