blackmoon | 41e2b30d4572089b0a3e6d9b1bb69a95ca0e4db0f36f770295e8d7c136370757 | Triage

Submit
Reports

Overview

overview

Static

static

7

80a02c5194...0N.exe

windows7-x64

80a02c5194...0N.exe

windows10-2004-x64

Sharing

General

Target

80a02c5194daf7d58c559a77c94cc810N.exe
Size

311KB
Sample

240820-d32rsavgqq
MD5

80a02c5194daf7d58c559a77c94cc810
SHA1

7bbe54c9ce84ffba592d470537095c6a8d2882bb
SHA256

41e2b30d4572089b0a3e6d9b1bb69a95ca0e4db0f36f770295e8d7c136370757
SHA512

eb4879c27cfd68e0148b94b31437d590d8ebad6b295877eed46fdffbf874ce164c3a8341cc9e40b12664dd6228f28596ddb02e22903fd3cc0cad976a7605abb3
SSDEEP

6144:kcm4FmowdHoSphraHcpOFltH4t+IDvSXrh5g8hZTyoIKQw8:y4wFHoS3eFp3IDvSbh5nP+oIKQJ

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

80a02c5194daf7d58c559a77c94cc810N.exe

Resource

win7-20240708-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

80a02c5194daf7d58c559a77c94cc810N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  80a02c5194daf7d58c559a77c94cc810N.exe
- Size
  
  311KB
- MD5
  
  80a02c5194daf7d58c559a77c94cc810
- SHA1
  
  7bbe54c9ce84ffba592d470537095c6a8d2882bb
- SHA256
  
  41e2b30d4572089b0a3e6d9b1bb69a95ca0e4db0f36f770295e8d7c136370757
- SHA512
  
  eb4879c27cfd68e0148b94b31437d590d8ebad6b295877eed46fdffbf874ce164c3a8341cc9e40b12664dd6228f28596ddb02e22903fd3cc0cad976a7605abb3
- SSDEEP
  
  6144:kcm4FmowdHoSphraHcpOFltH4t+IDvSXrh5g8hZTyoIKQw8:y4wFHoS3eFp3IDvSbh5nP+oIKQJ
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy