blackmoon | 37d229fad943ab342d039685018c9218b69eff13f38346cbd57b2c183ec01ae0 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

1c043c1464...0N.exe

windows7-x64

1c043c1464...0N.exe

windows10-2004-x64

Sharing

General

Target

1c043c14644307d356a7cd5fff744fc0N.exe
Size

250KB
Sample

240903-d88ghsxejg
MD5

1c043c14644307d356a7cd5fff744fc0
SHA1

4cdc343158a046212ec6b509aba4935d3593e5d6
SHA256

37d229fad943ab342d039685018c9218b69eff13f38346cbd57b2c183ec01ae0
SHA512

139b44f932266739bb464383458122de630664a8281d41612a11e71bc4ef9befe21f91fc43e90fe1528900dd80bafb0acae67ad762a9f6f1116f070d934af68b
SSDEEP

6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRly8:n3C9uD6AUDCa4NYmRl

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1c043c14644307d356a7cd5fff744fc0N.exe

Resource

win7-20240704-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

1c043c14644307d356a7cd5fff744fc0N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  1c043c14644307d356a7cd5fff744fc0N.exe
- Size
  
  250KB
- MD5
  
  1c043c14644307d356a7cd5fff744fc0
- SHA1
  
  4cdc343158a046212ec6b509aba4935d3593e5d6
- SHA256
  
  37d229fad943ab342d039685018c9218b69eff13f38346cbd57b2c183ec01ae0
- SHA512
  
  139b44f932266739bb464383458122de630664a8281d41612a11e71bc4ef9befe21f91fc43e90fe1528900dd80bafb0acae67ad762a9f6f1116f070d934af68b
- SSDEEP
  
  6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRly8:n3C9uD6AUDCa4NYmRl
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy