blackmoon | 315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595 | Triage

Submit
Reports

Overview

overview

Static

static

7

315e96e31d...cs.exe

windows7-x64

315e96e31d...cs.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595_NeikiAnalytics.exe
Size

104KB
Sample

240626-bg5v7sveng
MD5

b41211257f9a9e5844f9ed83a446cd50
SHA1

5a35698461e9b25e323707754bb9bba3baa9066f
SHA256

315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595
SHA512

6d9c44219a4d4a4df0a0cf65fa3f74be80b68988996345e228f844f91736d5f438fb648a537ec78f71c7b73f9837f36f2cb022485ddb44d27c5422c9e5b63bf6
SSDEEP

1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFbUZJjw5Ivov1d3ZdpQm6hRw:9hOmTsF93UYfwC6GIoutz5yLpRDN6hRw

Score

10^/10

blackmoon banker trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595_NeikiAnalytics.exe

Resource

win7-20240220-en

blackmoon banker trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595_NeikiAnalytics.exe

Resource

win10v2004-20240611-en

blackmoon banker trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595_NeikiAnalytics.exe
- Size
  
  104KB
- MD5
  
  b41211257f9a9e5844f9ed83a446cd50
- SHA1
  
  5a35698461e9b25e323707754bb9bba3baa9066f
- SHA256
  
  315e96e31d8f2d862cf48ab48d178b7388f32b6006441fdeb068151b3bbed595
- SHA512
  
  6d9c44219a4d4a4df0a0cf65fa3f74be80b68988996345e228f844f91736d5f438fb648a537ec78f71c7b73f9837f36f2cb022485ddb44d27c5422c9e5b63bf6
- SSDEEP
  
  1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFbUZJjw5Ivov1d3ZdpQm6hRw:9hOmTsF93UYfwC6GIoutz5yLpRDN6hRw
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy