blackmoon | 03b5b808b9ceefc3f07ebfa5743fb1904d786782a93e96640dfb03df21e86b3f | Triage

Submit
Reports

Overview

overview

Static

static

3

257236d595...0N.exe

windows7-x64

257236d595...0N.exe

windows10-2004-x64

Sharing

General

Target

257236d595eac05d529b77196da50550N.exe
Size

76KB
Sample

240726-syk1sszdqc
MD5

257236d595eac05d529b77196da50550
SHA1

3f05db6301573f2587651a267132ddfe641aeaeb
SHA256

03b5b808b9ceefc3f07ebfa5743fb1904d786782a93e96640dfb03df21e86b3f
SHA512

f0f7dbaa609515d1e09ee12e438ea5189d4f149fb65ea8897039002d91506d4140c2b76b3df5b228eb2557f6c3415fd572a8ee852fa426e373f0ed82745b75ea
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJhy:ymb3NkkiQ3mdBjFIwsDhbN7y

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

257236d595eac05d529b77196da50550N.exe

Resource

win7-20240704-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

257236d595eac05d529b77196da50550N.exe

Resource

win10v2004-20240709-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  257236d595eac05d529b77196da50550N.exe
- Size
  
  76KB
- MD5
  
  257236d595eac05d529b77196da50550
- SHA1
  
  3f05db6301573f2587651a267132ddfe641aeaeb
- SHA256
  
  03b5b808b9ceefc3f07ebfa5743fb1904d786782a93e96640dfb03df21e86b3f
- SHA512
  
  f0f7dbaa609515d1e09ee12e438ea5189d4f149fb65ea8897039002d91506d4140c2b76b3df5b228eb2557f6c3415fd572a8ee852fa426e373f0ed82745b75ea
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJhy:ymb3NkkiQ3mdBjFIwsDhbN7y
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy