blackmoon | 067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b | Triage

Submit
Reports

Overview

overview

Static

static

067e24558c...4b.exe

windows7-x64

067e24558c...4b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b
Size

369KB
Sample

240526-wzcbtsfc2y
MD5

00b96cd9c9a71df23e9300ae51550ea4
SHA1

1a9398b4aa9ca4f3f8256dae628438185737cefc
SHA256

067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b
SHA512

64bfebcc3a72c79efc168dec5dd318c8fbbd1cc5e7dc5b93444d93cf0b882ebfcfd24cef70d8000233c5c6b3960a52c9b3adb119febdb623c620963d6d0ad3b1
SSDEEP

6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSM/xCkJ:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZO

Score

10^/10

blackmoon banker trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b.exe

Resource

win7-20240221-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b
- Size
  
  369KB
- MD5
  
  00b96cd9c9a71df23e9300ae51550ea4
- SHA1
  
  1a9398b4aa9ca4f3f8256dae628438185737cefc
- SHA256
  
  067e24558c445c5ce900e2674e59daeea0e29fab90cde60b3d57d5314723794b
- SHA512
  
  64bfebcc3a72c79efc168dec5dd318c8fbbd1cc5e7dc5b93444d93cf0b882ebfcfd24cef70d8000233c5c6b3960a52c9b3adb119febdb623c620963d6d0ad3b1
- SSDEEP
  
  6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSM/xCkJ:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZO
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy