blackmoon | 3606e6e9dc47fc71cc9270ca460ea3abfe231a6326f570bb181d1eebb6e6dded | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce516cf016f0a5fabe381cc8cd974921_JaffaCakes118
Size

5.8MB
Sample

240906-bnqd4ayapp
MD5

ce516cf016f0a5fabe381cc8cd974921
SHA1

4d29a19d80757e7e80103b9a256c14d64abdc9b0
SHA256

3606e6e9dc47fc71cc9270ca460ea3abfe231a6326f570bb181d1eebb6e6dded
SHA512

25cba19403ae5a29992759f39e1b56f7319668ae9eaf35321a420fbad3724e6beb2cf6c74599962bf6eeab95906c6f1ca636aeeb996f76bbab4cd71d3880c8ae
SSDEEP

98304:91ed5Kbc1ifGojbvMjGhyIT2YX6OSZYWpYLKRguTn+elmlw/ZpW/yQtvow/XiP:91Jc1izjbEKhyzO0pYlk+4m87WftvZqP

Score

10^/10

blackmoon banker discovery trojan

Malware Config

Targets

- Target
  
  NetPiao.exe
- Size
  
  5.9MB
- MD5
  
  a087187bf204811f4a491c3e88b786a1
- SHA1
  
  920f91a08bfc33d4820c7916a14000d2cd948a0b
- SHA256
  
  159bb553eb88466473839d2460eaad59b056f28974a8b411ca9131acdf2212ae
- SHA512
  
  44ca6a011ccd42abf7f7add010defff3c3561ba527bdb8c88c68a1b0d9a0cb53137bb7ef0c3c20489d3286b4427eb81fd83882f7aef8b7a6d27fe31813eecc44
- SSDEEP
  
  98304:Hax6FvKRcbMTmQlLxQrGvy0huGT0+0NSuZsJQriarP22NEnQlfpw7eEt9ouTDk8:H0fcbMFlLWSvyV+6Zs/w2uEuRw9t9xk8
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2
- Target
  
  使用帮助.url
- Size
  
  170B
- MD5
  
  0146b263f02fd2bd7e9e36a572c51b84
- SHA1
  
  8d8f70172b0ab3b8fe4e77d5f85bf5263dd429c0
- SHA256
  
  7c00ba658c5a5c3d5209ab12084b0996d1519367601a18c0b7594e5906c27241
- SHA512
  
  1016be69907cc87ab71dab065f59c20593351577e1af0707ded7ed75916d19d58d24f76e7aa6be6888e72e40706e8ce45bb154b819896e69b49e075b2e19a64f
Score

1^/10
behavioral3 behavioral4
- Target
  
  在线购买.url
- Size
  
  179B
- MD5
  
  a3a8684d047101f2965b7abb44eb3cd4
- SHA1
  
  8b5eebe42de83829605fa8fae4bbe2faeec3dca1
- SHA256
  
  0f246b4c13c3017b48e980c40339358ac3c08eb047c485411d11e5fdeaef28fb
- SHA512
  
  700459191c9f91d7f9be3c84085350e22b1e64791bb3256650a98bf1219b9bb2d4dbf9973967ca3df8da44679c0b5e8d470b25bf304664f11966e85ada658a11
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

behavioral3

behavioral4

behavioral5

behavioral6