blackmoon | a8e2340c42091c8190e126fc0bd8bde2715bac7000eecb77b3a8a6866f842746 | Triage

Submit
Reports

Overview

overview

Static

static

7

b1e79a7f79...0N.exe

windows7-x64

b1e79a7f79...0N.exe

windows10-2004-x64

Sharing

General

Target

b1e79a7f79514e48516a1d619d74a010N.exe
Size

272KB
Sample

240726-kysfwasakd
MD5

b1e79a7f79514e48516a1d619d74a010
SHA1

cdbdcf4d32a309665d298e63137b50063d9f9dd4
SHA256

a8e2340c42091c8190e126fc0bd8bde2715bac7000eecb77b3a8a6866f842746
SHA512

a4cf18ce6a4fc695db9009612b9aa7ce786c47b463ffd05a1caf6402c410fc55a05d027c6db1ea3a1fdf0b5fb19b9fdb5aaa95d52e2efc4fcb5b4c316b88f83d
SSDEEP

3072:LhOmTsF93UYfwC6GIoutVwT0JOfZKldUIbvpynrSPBPOY4W5oo:Lcm4FmowdHoSVwT+aZKlumArSPBPJH

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b1e79a7f79514e48516a1d619d74a010N.exe

Resource

win7-20240704-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

b1e79a7f79514e48516a1d619d74a010N.exe

Resource

win10v2004-20240709-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  b1e79a7f79514e48516a1d619d74a010N.exe
- Size
  
  272KB
- MD5
  
  b1e79a7f79514e48516a1d619d74a010
- SHA1
  
  cdbdcf4d32a309665d298e63137b50063d9f9dd4
- SHA256
  
  a8e2340c42091c8190e126fc0bd8bde2715bac7000eecb77b3a8a6866f842746
- SHA512
  
  a4cf18ce6a4fc695db9009612b9aa7ce786c47b463ffd05a1caf6402c410fc55a05d027c6db1ea3a1fdf0b5fb19b9fdb5aaa95d52e2efc4fcb5b4c316b88f83d
- SSDEEP
  
  3072:LhOmTsF93UYfwC6GIoutVwT0JOfZKldUIbvpynrSPBPOY4W5oo:Lcm4FmowdHoSVwT+aZKlumArSPBPJH
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy