blackmoon | f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21 | Triage

Submit
Reports

Overview

overview

Static

static

f9a5104d54...21.exe

windows7-x64

f9a5104d54...21.exe

windows10-2004-x64

Sharing

General

Target

f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21
Size

15.0MB
Sample

240909-yc375sybkh
MD5

314fd312f15ced6ed0eddc5721fee4d1
SHA1

de2f40a092daec296c0d94a4800ceaaa793e5dae
SHA256

f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21
SHA512

562ed4505aacdcf1fb73f8e0cb82b2f4140c7fc9b1223c8ccfd0683f98a1e01fe4d525f16db2e533d609518c62b68d71efc6a75a57eebb86621ded0f03cfefcb
SSDEEP

98304:phN+60us/rm+KgeKSy75hcLtJq5lKfBcq44bKIMR6d5BtiMhm56CeUF+TUImr0cR:p60fBW4OejtfjrZJR46JVYc9BDal

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21
- Size
  
  15.0MB
- MD5
  
  314fd312f15ced6ed0eddc5721fee4d1
- SHA1
  
  de2f40a092daec296c0d94a4800ceaaa793e5dae
- SHA256
  
  f9a5104d54b4f04cfd2021ac216405d3ab125fc43a1dbee507efbac16f405d21
- SHA512
  
  562ed4505aacdcf1fb73f8e0cb82b2f4140c7fc9b1223c8ccfd0683f98a1e01fe4d525f16db2e533d609518c62b68d71efc6a75a57eebb86621ded0f03cfefcb
- SSDEEP
  
  98304:phN+60us/rm+KgeKSy75hcLtJq5lKfBcq44bKIMR6d5BtiMhm56CeUF+TUImr0cR:p60fBW4OejtfjrZJR46JVYc9BDal
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy