blackmoon | ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6 | Triage

Submit
Reports

Overview

overview

Static

static

3

ba0b664c7a...c6.exe

windows7-x64

ba0b664c7a...c6.exe

windows10-2004-x64

Sharing

General

Target

ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6
Size

78KB
Sample

240521-dwtslagd5x
MD5

76ae4022a66114b15ce7098f337beed5
SHA1

9caadb55cf862fbd95cca9ff2e877301ab30ded3
SHA256

ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6
SHA512

7d327e6b5dd516bebbf73f1515078d76a35395093c523f5567ffcbba1dfe79b696734050c179842fbb163c4deadfc8dab0c990b8fa6d483c70e495271987554d
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJjOBo9l:ymb3NkkiQ3mdBjF+3TU2KEJjE6l

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6.exe

Resource

win7-20240508-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6
- Size
  
  78KB
- MD5
  
  76ae4022a66114b15ce7098f337beed5
- SHA1
  
  9caadb55cf862fbd95cca9ff2e877301ab30ded3
- SHA256
  
  ba0b664c7a5fd68195a5c14b2538d5138db13aad4f10fdf5d377c9e16a8763c6
- SHA512
  
  7d327e6b5dd516bebbf73f1515078d76a35395093c523f5567ffcbba1dfe79b696734050c179842fbb163c4deadfc8dab0c990b8fa6d483c70e495271987554d
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJjOBo9l:ymb3NkkiQ3mdBjF+3TU2KEJjE6l
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy