blackmoon | 6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491 | Triage

Submit
Reports

Overview

overview

Static

static

3

6c2399a3ff...91.exe

windows7-x64

6c2399a3ff...91.exe

windows10-2004-x64

Sharing

General

Target

6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491
Size

66KB
Sample

240519-2w382afg4x
MD5

084734274535f7960c809dd4d7c8ca8a
SHA1

5a41275a92158c966188af9d94d3d484e40c4127
SHA256

6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491
SHA512

7d53cfb8464ff681086047bdcba0ab9fd558c5daabda00144f6563931d08ba8e7a701bca33262ade8f353c38c5af96dc6ef14e14b37e3482d207d64a275ef2c1
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZs:ymb3NkkiQ3mdBjF0yUmW

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491.exe

Resource

win7-20240508-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491
- Size
  
  66KB
- MD5
  
  084734274535f7960c809dd4d7c8ca8a
- SHA1
  
  5a41275a92158c966188af9d94d3d484e40c4127
- SHA256
  
  6c2399a3ffea4b5f33a4474c02dce3e44847e61f1e6ce2665dd0c89bc18a8491
- SHA512
  
  7d53cfb8464ff681086047bdcba0ab9fd558c5daabda00144f6563931d08ba8e7a701bca33262ade8f353c38c5af96dc6ef14e14b37e3482d207d64a275ef2c1
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZs:ymb3NkkiQ3mdBjF0yUmW
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy