blackmoon | c948a47b3350398e37646701a97b82ad047466dfe44bdbe3d1557be6cceed21a | Triage

Submit
Reports

Overview

overview

Static

static

7

517ff3872c...0N.exe

windows7-x64

517ff3872c...0N.exe

windows10-2004-x64

Sharing

General

Target

517ff3872cebfbd4be939c15d78b3970N.exe
Size

365KB
Sample

240726-zcnywstamk
MD5

517ff3872cebfbd4be939c15d78b3970
SHA1

e1c802198cfe4673a08eb973f6499ca454b61dbb
SHA256

c948a47b3350398e37646701a97b82ad047466dfe44bdbe3d1557be6cceed21a
SHA512

63530ec925f01f00f17dae394c7ee8fdd34c7a6ec0a40c8d68aafcddc9745336186602c0159c201438abd5e15484520e25186e3e1e26a2b82b449d7c8276e7cb
SSDEEP

6144:zcm4FmowdHoSgWrXD486jJq1BStv4Ib1HmKDAS:Z4wFHoSgWj16A3StvxgS

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

517ff3872cebfbd4be939c15d78b3970N.exe

Resource

win7-20240708-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

517ff3872cebfbd4be939c15d78b3970N.exe

Resource

win10v2004-20240709-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  517ff3872cebfbd4be939c15d78b3970N.exe
- Size
  
  365KB
- MD5
  
  517ff3872cebfbd4be939c15d78b3970
- SHA1
  
  e1c802198cfe4673a08eb973f6499ca454b61dbb
- SHA256
  
  c948a47b3350398e37646701a97b82ad047466dfe44bdbe3d1557be6cceed21a
- SHA512
  
  63530ec925f01f00f17dae394c7ee8fdd34c7a6ec0a40c8d68aafcddc9745336186602c0159c201438abd5e15484520e25186e3e1e26a2b82b449d7c8276e7cb
- SSDEEP
  
  6144:zcm4FmowdHoSgWrXD486jJq1BStv4Ib1HmKDAS:Z4wFHoSgWj16A3StvxgS
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy