blackmoon | a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298 | Triage

Submit
Reports

Overview

overview

Static

static

a4c7fb57c0...98.exe

windows7-x64

a4c7fb57c0...98.exe

windows10-2004-x64

Sharing

General

Target

a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298
Size

89KB
Sample

240522-e8jzlacd51
MD5

5714d433daa99f8f622feb98c0607887
SHA1

d8821a5b0747aeea054c77a9d1ee68f787edb08d
SHA256

a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298
SHA512

52e41f09b316aa70e1f4d22f6f3e6c9708814e6a85c93695b95c878d2e9576432f0e367818f066457a78ff605cf0f660b19d94264dd8f8430663fd4cbfb7df8c
SSDEEP

1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+q:chOmTsF93UYfwC6GIoutieyhC2lbgGiH

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298.exe

Resource

win7-20240508-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298
- Size
  
  89KB
- MD5
  
  5714d433daa99f8f622feb98c0607887
- SHA1
  
  d8821a5b0747aeea054c77a9d1ee68f787edb08d
- SHA256
  
  a4c7fb57c07d3a6c5b13607391434e69a20a8e2065f5f98ec81c5f11ef316298
- SHA512
  
  52e41f09b316aa70e1f4d22f6f3e6c9708814e6a85c93695b95c878d2e9576432f0e367818f066457a78ff605cf0f660b19d94264dd8f8430663fd4cbfb7df8c
- SSDEEP
  
  1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+q:chOmTsF93UYfwC6GIoutieyhC2lbgGiH
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy