blackmoon | ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4 | Triage

Submit
Reports

Overview

overview

Static

static

ae0d97c952...b4.exe

windows7-x64

ae0d97c952...b4.exe

windows10-2004-x64

Sharing

General

Target

ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4
Size

378KB
Sample

240521-c7xsysff5z
MD5

3ff6f62f24093efda0b9081cfb1bb1db
SHA1

0c618cc669b3879a768123770ebfad6085d9f1a5
SHA256

ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4
SHA512

08e684ece7148f8ff4a5fe3e60e95a61d4ef104168c58600e7af14fc985c6cb610ac4096a2530ccab0800d52a538fb3ad0ca17fdb2a894280ae9349dfd411763
SSDEEP

6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyu:/4wFHoS4WEkMTHoSbG++tw+tYYyu

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4.exe

Resource

win7-20240221-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4
- Size
  
  378KB
- MD5
  
  3ff6f62f24093efda0b9081cfb1bb1db
- SHA1
  
  0c618cc669b3879a768123770ebfad6085d9f1a5
- SHA256
  
  ae0d97c952da5d6abc7904ab31bb712d49e6eec0e869072c5e5d3f23d4232db4
- SHA512
  
  08e684ece7148f8ff4a5fe3e60e95a61d4ef104168c58600e7af14fc985c6cb610ac4096a2530ccab0800d52a538fb3ad0ca17fdb2a894280ae9349dfd411763
- SSDEEP
  
  6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyu:/4wFHoS4WEkMTHoSbG++tw+tYYyu
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy