blackmoon | f5bc269a4a3d7fc960e6a0b553bab7a31352f5d4ea7e8a3b1ff0754e2afd754f | Triage

Submit
Reports

Overview

overview

Static

static

7

52e88d59c2...0N.exe

windows7-x64

52e88d59c2...0N.exe

windows10-2004-x64

Sharing

General

Target

52e88d59c2320ee0f97d9c3b64bbca90N.exe
Size

91KB
Sample

240726-zh55csxakc
MD5

52e88d59c2320ee0f97d9c3b64bbca90
SHA1

84eff3699ff55bc6ce73069734d0dad87dd01d80
SHA256

f5bc269a4a3d7fc960e6a0b553bab7a31352f5d4ea7e8a3b1ff0754e2afd754f
SHA512

4eafdeec83adbc680e016fcf55b9a26bc598d823d05afe50bdcbedee38e782598f4b943e670cfd01ccba5f12bb91beba17ab5598d3c627b2ef6720c1cdca6b9b
SSDEEP

1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8yaVskCzYBQi37bF+fZlwC:9hOmTsF93UYfwC6GIoutyaVszji3vFoB

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

52e88d59c2320ee0f97d9c3b64bbca90N.exe

Resource

win7-20240705-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

52e88d59c2320ee0f97d9c3b64bbca90N.exe

Resource

win10v2004-20240709-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  52e88d59c2320ee0f97d9c3b64bbca90N.exe
- Size
  
  91KB
- MD5
  
  52e88d59c2320ee0f97d9c3b64bbca90
- SHA1
  
  84eff3699ff55bc6ce73069734d0dad87dd01d80
- SHA256
  
  f5bc269a4a3d7fc960e6a0b553bab7a31352f5d4ea7e8a3b1ff0754e2afd754f
- SHA512
  
  4eafdeec83adbc680e016fcf55b9a26bc598d823d05afe50bdcbedee38e782598f4b943e670cfd01ccba5f12bb91beba17ab5598d3c627b2ef6720c1cdca6b9b
- SSDEEP
  
  1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8yaVskCzYBQi37bF+fZlwC:9hOmTsF93UYfwC6GIoutyaVszji3vFoB
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy