blackmoon | aecf8e34f39dfd4ddfeba4380f3a1c11d765b8151d777e8faf8e4931f2a02937 | Triage

Submit
Reports

Overview

overview

Static

static

3

ad02957f57...0N.exe

windows7-x64

ad02957f57...0N.exe

windows10-2004-x64

Sharing

General

Target

ad02957f57989db23295419fe6b9c770N.exe
Size

88KB
Sample

240821-lbn1lszhrc
MD5

ad02957f57989db23295419fe6b9c770
SHA1

feefc096fa3412dc50efeb837ad1cab250c874d4
SHA256

aecf8e34f39dfd4ddfeba4380f3a1c11d765b8151d777e8faf8e4931f2a02937
SHA512

63d2d140f8ce0abf61828ee2e91981cfd5d171888284f298a4edb07c7378c04b0105bfaa83c0c97c903ff43cbe032de212b0049f904f69ab975362c8ecc12ebf
SSDEEP

1536:/s2OpUqBA6pkuTHQ0cIrf+7LYsF03RYSYhM9l8yDI15XygDSC:/ImRWTTpc627LXFm6+9l8nygDSC

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ad02957f57989db23295419fe6b9c770N.exe

Resource

win7-20240708-en

blackmoon banker discovery trojan

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

ad02957f57989db23295419fe6b9c770N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  ad02957f57989db23295419fe6b9c770N.exe
- Size
  
  88KB
- MD5
  
  ad02957f57989db23295419fe6b9c770
- SHA1
  
  feefc096fa3412dc50efeb837ad1cab250c874d4
- SHA256
  
  aecf8e34f39dfd4ddfeba4380f3a1c11d765b8151d777e8faf8e4931f2a02937
- SHA512
  
  63d2d140f8ce0abf61828ee2e91981cfd5d171888284f298a4edb07c7378c04b0105bfaa83c0c97c903ff43cbe032de212b0049f904f69ab975362c8ecc12ebf
- SSDEEP
  
  1536:/s2OpUqBA6pkuTHQ0cIrf+7LYsF03RYSYhM9l8yDI15XygDSC:/ImRWTTpc627LXFm6+9l8nygDSC
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy