blackmoon | d14720f5a13dbaa1ed082dd049b459ff3782a02675a5edaa8412c1704bdfceee | Triage

Submit
Reports

Overview

overview

Static

static

7

PQ.exe

windows7-x64

PQ.exe

windows10-2004-x64

Sharing

General

Target

PQ.exe
Size

171KB
Sample

240615-l9c11awhmb
MD5

e492236d89fd48b8306cc81580bd43fb
SHA1

07a84e406d742108134c7c9fc5adf2b0b6301a2a
SHA256

d14720f5a13dbaa1ed082dd049b459ff3782a02675a5edaa8412c1704bdfceee
SHA512

056b64d1ba8405f53f7dbf637091ef6d0524aff652a80e1ab9c0052f8effec1841014b93656084dc83841664264773a417c1a760235a0ec24cc4ba0072abebfd
SSDEEP

3072:cPfgHfMXJOItgZB6kwV22XnxhxR0juaoYVqqFmva75V6rJ0d+psKuuXMUoutp:kg0X886KV2UxhXqVJFmva776rJuc8Uo0

Score

10^/10

blackmoon banker trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

PQ.exe

Resource

win7-20240611-en

blackmoon banker trojan upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

PQ.exe

Resource

win10v2004-20240611-en

blackmoon banker trojan upx

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  PQ.exe
- Size
  
  171KB
- MD5
  
  e492236d89fd48b8306cc81580bd43fb
- SHA1
  
  07a84e406d742108134c7c9fc5adf2b0b6301a2a
- SHA256
  
  d14720f5a13dbaa1ed082dd049b459ff3782a02675a5edaa8412c1704bdfceee
- SHA512
  
  056b64d1ba8405f53f7dbf637091ef6d0524aff652a80e1ab9c0052f8effec1841014b93656084dc83841664264773a417c1a760235a0ec24cc4ba0072abebfd
- SSDEEP
  
  3072:cPfgHfMXJOItgZB6kwV22XnxhxR0juaoYVqqFmva75V6rJ0d+psKuuXMUoutp:kg0X886KV2UxhXqVJFmva776rJuc8Uo0
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy