blackmoon | 0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae | Triage

Submit
Reports

Overview

overview

Static

static

3

0e9b4d0b0f...ae.exe

windows7-x64

0e9b4d0b0f...ae.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae
Size

61KB
Sample

240526-xbjaxage82
MD5

9268c1659eb26512b71ab478c3167e55
SHA1

bc08ef3c4bc3d3b46a0dd8c5ec24bb6cecf3110d
SHA256

0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae
SHA512

cf9493ea667cb04f7502b4fd38c3b1982b7adf26366f5b02500f1230042e1393865cd08b56ce714cbcae03c317c791ef32d83fec6f64d003dac8ae395f4434a1
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAxRcNogpV:ymb3NkkiQ3mdBjFoJygD

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae.exe

Resource

win7-20240508-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae
- Size
  
  61KB
- MD5
  
  9268c1659eb26512b71ab478c3167e55
- SHA1
  
  bc08ef3c4bc3d3b46a0dd8c5ec24bb6cecf3110d
- SHA256
  
  0e9b4d0b0fe8399c18ba3b8e4aff235d4752078e45dd935801120e7f631f04ae
- SHA512
  
  cf9493ea667cb04f7502b4fd38c3b1982b7adf26366f5b02500f1230042e1393865cd08b56ce714cbcae03c317c791ef32d83fec6f64d003dac8ae395f4434a1
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAxRcNogpV:ymb3NkkiQ3mdBjFoJygD
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy