blackmoon | 384c688e5f3dab198fc49b80a2296a687eff0f4a8720baa905536e9b0a468ff9 | Triage

Submit
Reports

Overview

overview

Static

static

3

edfa89ea12...0N.exe

windows7-x64

edfa89ea12...0N.exe

windows10-2004-x64

Sharing

General

Target

edfa89ea12039eee073cd0de8925ac60N.exe
Size

309KB
Sample

240821-nlfhbswbqg
MD5

edfa89ea12039eee073cd0de8925ac60
SHA1

bdfb691ce9bf9b31ef0bf89cc72a002b5d46d950
SHA256

384c688e5f3dab198fc49b80a2296a687eff0f4a8720baa905536e9b0a468ff9
SHA512

13a31c046033d09883866b7b600fbbf828f5fac0d9fda3064f2337372712fe432b11d4b06b80cd88d0a0e14aaca4a248badf0b815f06278151c66db3f05848d9
SSDEEP

3072:ymb3NkkiQ3mdBjFo7LAIRUohDLS0k+sLiiBVS0ILlMcGGW7sRCl9eMMJ:n3C9BRo/AIuunS3+sOiBVSXxMxTsm9eV

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

edfa89ea12039eee073cd0de8925ac60N.exe

Resource

win7-20240708-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

edfa89ea12039eee073cd0de8925ac60N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  edfa89ea12039eee073cd0de8925ac60N.exe
- Size
  
  309KB
- MD5
  
  edfa89ea12039eee073cd0de8925ac60
- SHA1
  
  bdfb691ce9bf9b31ef0bf89cc72a002b5d46d950
- SHA256
  
  384c688e5f3dab198fc49b80a2296a687eff0f4a8720baa905536e9b0a468ff9
- SHA512
  
  13a31c046033d09883866b7b600fbbf828f5fac0d9fda3064f2337372712fe432b11d4b06b80cd88d0a0e14aaca4a248badf0b815f06278151c66db3f05848d9
- SSDEEP
  
  3072:ymb3NkkiQ3mdBjFo7LAIRUohDLS0k+sLiiBVS0ILlMcGGW7sRCl9eMMJ:n3C9BRo/AIuunS3+sOiBVSXxMxTsm9eV
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy