blackmoon | 0b3cba31373ae4c648184dd7433c5b24a91b966a1076a227d32e6a1a417fea2c | Triage

Submit
Reports

Overview

overview

Static

static

3

055b570b5c...18.exe

windows7-x64

055b570b5c...18.exe

windows10-2004-x64

Sharing

General

Target

055b570b5c7c648baf774447328297e1_JaffaCakes118
Size

95KB
Sample

240728-cbyelsvcrd
MD5

055b570b5c7c648baf774447328297e1
SHA1

c49a53c4b7a031248219b8640ffd3fc88ff9f8d5
SHA256

0b3cba31373ae4c648184dd7433c5b24a91b966a1076a227d32e6a1a417fea2c
SHA512

df0bc2317114ee4772375e7a0ab99110868b44b191adb6bdd9fdfbbbd2e33aebf9ddabca83081989f73ecdd066c32b4ed2082c731e7d38316ea3a28f6c992092
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+mzv7oEzNmNMvVjoq:ymb3NkkiQ3mdBjF+3TYzvTt8q

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

055b570b5c7c648baf774447328297e1_JaffaCakes118.exe

Resource

win7-20240705-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

055b570b5c7c648baf774447328297e1_JaffaCakes118.exe

Resource

win10v2004-20240709-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  055b570b5c7c648baf774447328297e1_JaffaCakes118
- Size
  
  95KB
- MD5
  
  055b570b5c7c648baf774447328297e1
- SHA1
  
  c49a53c4b7a031248219b8640ffd3fc88ff9f8d5
- SHA256
  
  0b3cba31373ae4c648184dd7433c5b24a91b966a1076a227d32e6a1a417fea2c
- SHA512
  
  df0bc2317114ee4772375e7a0ab99110868b44b191adb6bdd9fdfbbbd2e33aebf9ddabca83081989f73ecdd066c32b4ed2082c731e7d38316ea3a28f6c992092
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+mzv7oEzNmNMvVjoq:ymb3NkkiQ3mdBjF+3TYzvTt8q
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy