blackmoon | 58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

58b830b1c8...d8.exe

windows7-x64

58b830b1c8...d8.exe

windows10-2004-x64

Sharing

General

Target

58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8
Size

426KB
Sample

240722-1nnb6szdkb
MD5

d68b78b7fa425e8966260f9eeeedaeb7
SHA1

078f8bc60697729d2cb1edadb6d83930dc965d82
SHA256

58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8
SHA512

cc805fa98ec6ad192fe01333108757bda3a284cb53cde75f3a227e06e3b07814453b44401e01770a832c43460fe8be4a4214b54c45b81e4a4893b34da75c5145
SSDEEP

3072:PhOm2sI93UufdC67cihfmCiiiXAsACF486jJSp1BxI21xQo:Pcm7ImGddXtWrXD486jJq1BSq

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8.exe

Resource

win7-20240704-en

blackmoon banker trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8.exe

Resource

win10v2004-20240709-en

blackmoon banker trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8
- Size
  
  426KB
- MD5
  
  d68b78b7fa425e8966260f9eeeedaeb7
- SHA1
  
  078f8bc60697729d2cb1edadb6d83930dc965d82
- SHA256
  
  58b830b1c8059030253dc759f738d5e4bf799a04f258766a574eabd4c870cfd8
- SHA512
  
  cc805fa98ec6ad192fe01333108757bda3a284cb53cde75f3a227e06e3b07814453b44401e01770a832c43460fe8be4a4214b54c45b81e4a4893b34da75c5145
- SSDEEP
  
  3072:PhOm2sI93UufdC67cihfmCiiiXAsACF486jJSp1BxI21xQo:Pcm7ImGddXtWrXD486jJq1BSq
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy