blackmoon | b20fbf768f12268b27729d8303eebc152744588b329ef13d0953f57505319518 | Triage

Submit
Reports

Overview

overview

Static

static

3

4b9f96a616...0N.exe

windows7-x64

4b9f96a616...0N.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

4b9f96a616aef1b2d8a27c8891360d90N.exe
Size

332KB
Sample

240902-p32ybszhlq
MD5

4b9f96a616aef1b2d8a27c8891360d90
SHA1

45524004a329e95f3b9cdb684bb4b7040488aaf9
SHA256

b20fbf768f12268b27729d8303eebc152744588b329ef13d0953f57505319518
SHA512

5496335edd9440f7c6fa70c5972d697ac918bc0eb93b7327d0c86965f1934d72db35a749a074a59734600799b928cbc3aa251d766c6699f98d0da02c0c830d1b
SSDEEP

6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhE:F7Tc8JdSjylh2b77BoTMA9gX59sTsuTU

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4b9f96a616aef1b2d8a27c8891360d90N.exe

Resource

win7-20240704-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

4b9f96a616aef1b2d8a27c8891360d90N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  4b9f96a616aef1b2d8a27c8891360d90N.exe
- Size
  
  332KB
- MD5
  
  4b9f96a616aef1b2d8a27c8891360d90
- SHA1
  
  45524004a329e95f3b9cdb684bb4b7040488aaf9
- SHA256
  
  b20fbf768f12268b27729d8303eebc152744588b329ef13d0953f57505319518
- SHA512
  
  5496335edd9440f7c6fa70c5972d697ac918bc0eb93b7327d0c86965f1934d72db35a749a074a59734600799b928cbc3aa251d766c6699f98d0da02c0c830d1b
- SSDEEP
  
  6144:3cm7ImGddXsJdJIjaRleL42bL37BoTPkhu9gX5yGsTshQc8R0nxA5ij8+RC7tPhE:F7Tc8JdSjylh2b77BoTMA9gX59sTsuTU
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy