blackmoon | b012e9dd260dbf06dcf017a72c6ecccbcde039c8298c697f9b6ed6152ea14e2d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

671ab57860...cs.exe

windows7-x64

671ab57860...cs.exe

windows10-2004-x64

Sharing

General

Target

671ab578608d3ccf4cd19b2ad2bda850_NeikiAnalytics.exe
Size

120KB
Sample

240523-ba19fafe7s
MD5

671ab578608d3ccf4cd19b2ad2bda850
SHA1

3612c83454998d4de0260c5d79ba7c3481c8c048
SHA256

b012e9dd260dbf06dcf017a72c6ecccbcde039c8298c697f9b6ed6152ea14e2d
SHA512

dd8c406c3542ac0ef3f0e36b408ce6452542d0e4ccbc13a66b12181cffd958c17793c5e9ad949d8c9805b8fbd703ef412c5f4c1482cee1bb159da52c419c037f
SSDEEP

3072:/hOmTsF93UYfwC6GIoutKzdbr9XcMRwk6mNb5TcPeJipUPe:/cm4FmowdHoSKZf5cX5m7TNG

Score

10^/10

blackmoon banker trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

671ab578608d3ccf4cd19b2ad2bda850_NeikiAnalytics.exe

Resource

win7-20231129-en

blackmoon banker trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

671ab578608d3ccf4cd19b2ad2bda850_NeikiAnalytics.exe

Resource

win10v2004-20240226-en

blackmoon banker trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  671ab578608d3ccf4cd19b2ad2bda850_NeikiAnalytics.exe
- Size
  
  120KB
- MD5
  
  671ab578608d3ccf4cd19b2ad2bda850
- SHA1
  
  3612c83454998d4de0260c5d79ba7c3481c8c048
- SHA256
  
  b012e9dd260dbf06dcf017a72c6ecccbcde039c8298c697f9b6ed6152ea14e2d
- SHA512
  
  dd8c406c3542ac0ef3f0e36b408ce6452542d0e4ccbc13a66b12181cffd958c17793c5e9ad949d8c9805b8fbd703ef412c5f4c1482cee1bb159da52c419c037f
- SSDEEP
  
  3072:/hOmTsF93UYfwC6GIoutKzdbr9XcMRwk6mNb5TcPeJipUPe:/cm4FmowdHoSKZf5cX5m7TNG
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy