blackmoon | 191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063 | Triage

Submit
Reports

Overview

overview

Static

static

191c840a62...63.exe

windows7-x64

191c840a62...63.exe

windows10-2004-x64

Sharing

General

Target

191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063
Size

120KB
Sample

240523-xqhypacf7v
MD5

b20ae7ce30f01d9192a62692bc2764f9
SHA1

91ee959d596e4a2702783b2041d7f470559d356c
SHA256

191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063
SHA512

5447baa04fd61d35cad0e90c48b79fb7179e2b6a69020e76bd46cb413579fb666f14615ab258aa60846cee03b70e99bc05d7fa5d2e0a5fd038b2ef1618605860
SSDEEP

3072:/hOmTsF93UYfwC6GIoutKzdbr9XcMRwk6mNb5TcPeJipUe:/cm4FmowdHoSKZf5cX5m7TNe

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063.exe

Resource

win7-20240215-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063
- Size
  
  120KB
- MD5
  
  b20ae7ce30f01d9192a62692bc2764f9
- SHA1
  
  91ee959d596e4a2702783b2041d7f470559d356c
- SHA256
  
  191c840a62ceecabe42eafcc77dcaee02bab828fd555dbdd765f0f0395dce063
- SHA512
  
  5447baa04fd61d35cad0e90c48b79fb7179e2b6a69020e76bd46cb413579fb666f14615ab258aa60846cee03b70e99bc05d7fa5d2e0a5fd038b2ef1618605860
- SSDEEP
  
  3072:/hOmTsF93UYfwC6GIoutKzdbr9XcMRwk6mNb5TcPeJipUe:/cm4FmowdHoSKZf5cX5m7TNe
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy