blackmoon | 468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426 | Triage

Submit
Reports

Overview

overview

Static

static

3

468237d136...26.exe

windows7-x64

468237d136...26.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426
Size

351KB
Sample

240610-1dnj7a1hrr
MD5

3ef2ed19772fbbd52a3b45affaa6cfc4
SHA1

e81aa5ce5ff9dac1fdc47bc397d27b560e7252cc
SHA256

468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426
SHA512

b8923cefaa5dda32dcf0c1e671771c6c547758d1c811df4d9956cc3f5ea36d9f112cd0eababc85ea1d252dc5f6e5d1823787a4917f4d442f057a1efe28850ff4
SSDEEP

6144:4cm7ImGddXvJuzyy/SfVFKpU/sien7NuOpo0HmtDKe0wKyKqiOfm8RCfDK4TrHHt:+7TcBuGy/Sa+/sie0OpncKe/KFBOfmz1

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426.exe

Resource

win7-20240221-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426
- Size
  
  351KB
- MD5
  
  3ef2ed19772fbbd52a3b45affaa6cfc4
- SHA1
  
  e81aa5ce5ff9dac1fdc47bc397d27b560e7252cc
- SHA256
  
  468237d136fd07cef83a095c3c49be6dee793738099df4787d0c3ef5c5479426
- SHA512
  
  b8923cefaa5dda32dcf0c1e671771c6c547758d1c811df4d9956cc3f5ea36d9f112cd0eababc85ea1d252dc5f6e5d1823787a4917f4d442f057a1efe28850ff4
- SSDEEP
  
  6144:4cm7ImGddXvJuzyy/SfVFKpU/sien7NuOpo0HmtDKe0wKyKqiOfm8RCfDK4TrHHt:+7TcBuGy/Sa+/sie0OpncKe/KFBOfmz1
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy