blackmoon | 8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9 | Triage

Submit
Reports

Overview

overview

Static

static

3

8611ab486e...b9.exe

windows7-x64

8611ab486e...b9.exe

windows10-2004-x64

Sharing

General

Target

8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9
Size

81KB
Sample

240520-aaevrshh78
MD5

54d21f843b65560a988e8ca6faee40f7
SHA1

7e931c487cd3f0ee4eaf07d9456cdbf939ad2b8a
SHA256

8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9
SHA512

b07286da49311b7158f1f6d3630bfaf01e99e97f357f43763459c22c602ad05be17a8d252e7e8af178d3b3954ad158bfb4a3754021ad2a6218233e8f333de412
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dYS8nje:ymb3NkkiQ3mdBjFo7LAIbT6je

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9.exe

Resource

win7-20240220-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9
- Size
  
  81KB
- MD5
  
  54d21f843b65560a988e8ca6faee40f7
- SHA1
  
  7e931c487cd3f0ee4eaf07d9456cdbf939ad2b8a
- SHA256
  
  8611ab486e64482d9c33859891b937b09803718329f7f5740c328ec531f8dab9
- SHA512
  
  b07286da49311b7158f1f6d3630bfaf01e99e97f357f43763459c22c602ad05be17a8d252e7e8af178d3b3954ad158bfb4a3754021ad2a6218233e8f333de412
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dYS8nje:ymb3NkkiQ3mdBjFo7LAIbT6je
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy