blackmoon | d6edd4c3fff2e8b29ee6709e21fa0c124a33508f412a47da2f5a4d93e4c2d7df | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

aa91fbb58b...0N.exe

windows7-x64

aa91fbb58b...0N.exe

windows10-2004-x64

Sharing

General

Target

aa91fbb58bf1690e6c17a8f6849ae300N.exe
Size

366KB
Sample

240906-vcmzdaxcrl
MD5

aa91fbb58bf1690e6c17a8f6849ae300
SHA1

8a23e5a2e6fdcfd6f33ee1162a52a28cb95a66be
SHA256

d6edd4c3fff2e8b29ee6709e21fa0c124a33508f412a47da2f5a4d93e4c2d7df
SHA512

31b6a1947dc768fbf3db1ad37cf34349113ad4f97e37cd24a049fae7a308f488ae865cb3c3891c30c34d8b1a356f5dcb5e071103ae60a7075c2619faa8f47c06
SSDEEP

6144:n3C9BRo7tvnJ9oH0IRgZvjD8296gnzeZhBu+:n3C9ytvngQj429nnzeZhBv

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

aa91fbb58bf1690e6c17a8f6849ae300N.exe

Resource

win7-20240903-en

blackmoon banker trojan upx

windows7-x64

3 signatures

120 seconds

Behavioral task

behavioral2

Sample

aa91fbb58bf1690e6c17a8f6849ae300N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  aa91fbb58bf1690e6c17a8f6849ae300N.exe
- Size
  
  366KB
- MD5
  
  aa91fbb58bf1690e6c17a8f6849ae300
- SHA1
  
  8a23e5a2e6fdcfd6f33ee1162a52a28cb95a66be
- SHA256
  
  d6edd4c3fff2e8b29ee6709e21fa0c124a33508f412a47da2f5a4d93e4c2d7df
- SHA512
  
  31b6a1947dc768fbf3db1ad37cf34349113ad4f97e37cd24a049fae7a308f488ae865cb3c3891c30c34d8b1a356f5dcb5e071103ae60a7075c2619faa8f47c06
- SSDEEP
  
  6144:n3C9BRo7tvnJ9oH0IRgZvjD8296gnzeZhBu+:n3C9ytvngQj429nnzeZhBv
Score

10^/10

blackmoon banker trojan upx discovery
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy