blackmoon | caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88 | Triage

Submit
Reports

Overview

overview

Static

static

3

caf2034eff...88.exe

windows7-x64

caf2034eff...88.exe

windows10-2004-x64

Sharing

General

Target

caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88
Size

72KB
Sample

240520-dadjgsgg9t
MD5

a87b05584413dc13cd9850461abb3313
SHA1

a613a8909a3dbc78d671f281197da32ac055ee87
SHA256

caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88
SHA512

88a59a3edbbb51a696c34913a111d15dcc3dd471bd6fab192c7f3b35bf00ad7da90be4740a13778d4aca62a3cde771e17493806a29ef67b7afa9105955ec8ef0
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIrmCeRMKwFe:ymb3NkkiQ3mdBjFIjeKQ

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88.exe

Resource

win7-20240508-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88
- Size
  
  72KB
- MD5
  
  a87b05584413dc13cd9850461abb3313
- SHA1
  
  a613a8909a3dbc78d671f281197da32ac055ee87
- SHA256
  
  caf2034effc2fc826b884188d86bd0d1f96d5afe09cf7d71484af5196f704c88
- SHA512
  
  88a59a3edbbb51a696c34913a111d15dcc3dd471bd6fab192c7f3b35bf00ad7da90be4740a13778d4aca62a3cde771e17493806a29ef67b7afa9105955ec8ef0
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIrmCeRMKwFe:ymb3NkkiQ3mdBjFIjeKQ
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy