blackmoon | ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb | Triage

Submit
Reports

Overview

overview

Static

static

ecd7fe7b72...fb.dll

windows7-x64

ecd7fe7b72...fb.dll

windows10-2004-x64

Sharing

General

Target

ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb
Size

11.7MB
Sample

240912-2zvfas1blb
MD5

0fe259eaa838e9b2f7b66a24cf3df025
SHA1

00fcc4e3f820d3a222b153ead7e7ac1e71e374a1
SHA256

ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb
SHA512

571455cef38581f935a7ff0de1fd55d075b2b7007aba4331ee4d26e37bb9340634ec07b14aa028d7ce0d59d62177e7c3f5151e5f98708ac938893444ceb735c3
SSDEEP

196608:q0AjDluR9Jzm82EA5e+a2TCSfuMc9BDalp:q0AjDluR9JK82EETXfuMc9sn

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb.dll

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb.dll

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb
- Size
  
  11.7MB
- MD5
  
  0fe259eaa838e9b2f7b66a24cf3df025
- SHA1
  
  00fcc4e3f820d3a222b153ead7e7ac1e71e374a1
- SHA256
  
  ecd7fe7b724ba4a18ba1645f4b7580d0458f627ea4ed0a95d3e29c9158da23fb
- SHA512
  
  571455cef38581f935a7ff0de1fd55d075b2b7007aba4331ee4d26e37bb9340634ec07b14aa028d7ce0d59d62177e7c3f5151e5f98708ac938893444ceb735c3
- SSDEEP
  
  196608:q0AjDluR9Jzm82EA5e+a2TCSfuMc9BDalp:q0AjDluR9JK82EETXfuMc9sn
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy