blackmoon | 9ac72314d261bcda0fd8e985fcca41c1f520fa36b985cdca4911f05c203441cd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

eaf1f5a941...0N.exe

windows7-x64

eaf1f5a941...0N.exe

windows10-2004-x64

Sharing

General

Target

eaf1f5a94189ec963d5692d428d5c390N.exe
Size

64KB
Sample

240905-l4hpasyfrb
MD5

eaf1f5a94189ec963d5692d428d5c390
SHA1

ce250897becd6dc02da5e96bd28eebea707108f8
SHA256

9ac72314d261bcda0fd8e985fcca41c1f520fa36b985cdca4911f05c203441cd
SHA512

e86e47a830b969fba79aa9be3d21f219e9b8555f88eea9a9603ad5c8f730405397feb9ff23fbf697b65999fa61e4f064f11e391e2fac6cd92031c9f5ffb35999
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzNL:ymb3NkkiQ3mdBjFIvlpL

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

eaf1f5a94189ec963d5692d428d5c390N.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

eaf1f5a94189ec963d5692d428d5c390N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  eaf1f5a94189ec963d5692d428d5c390N.exe
- Size
  
  64KB
- MD5
  
  eaf1f5a94189ec963d5692d428d5c390
- SHA1
  
  ce250897becd6dc02da5e96bd28eebea707108f8
- SHA256
  
  9ac72314d261bcda0fd8e985fcca41c1f520fa36b985cdca4911f05c203441cd
- SHA512
  
  e86e47a830b969fba79aa9be3d21f219e9b8555f88eea9a9603ad5c8f730405397feb9ff23fbf697b65999fa61e4f064f11e391e2fac6cd92031c9f5ffb35999
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzNL:ymb3NkkiQ3mdBjFIvlpL
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy