blackmoon | 5c2e835f484d05b71071c7d0bff557f2f18c285954d8b10593f49bea36861f3c | Triage

Submit
Reports

Overview

overview

Static

static

d1d9c6ee0c...0N.exe

windows7-x64

d1d9c6ee0c...0N.exe

windows10-2004-x64

Sharing

General

Target

d1d9c6ee0c7fa2d23669418de934e520N
Size

485KB
Sample

240913-qytxlatame
MD5

d1d9c6ee0c7fa2d23669418de934e520
SHA1

59c64305a81d540e0c111feabdc28c36d7e3c7ab
SHA256

5c2e835f484d05b71071c7d0bff557f2f18c285954d8b10593f49bea36861f3c
SHA512

10a7acefe086e086fec22eacddaebc8b90a08b1b4c03741cbcf9dcfb31dcdbfbffade771ac179080d8231b449484068f1372c31ad7fefe95a47d6e9750f86fd0
SSDEEP

6144:n3C9BRo7tvnJ9oH0IRgZvjkUo7tvnJ9oH0IiVByq9CPobNVZL:n3C9ytvngQjgtvngSV3CPobNVh

Score

10^/10

blackmoon njrat banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d1d9c6ee0c7fa2d23669418de934e520N.exe

Resource

win7-20240903-en

blackmoon njrat banker discovery trojan upx

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

d1d9c6ee0c7fa2d23669418de934e520N.exe

Resource

win10v2004-20240802-en

blackmoon njrat banker discovery trojan upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  d1d9c6ee0c7fa2d23669418de934e520N
- Size
  
  485KB
- MD5
  
  d1d9c6ee0c7fa2d23669418de934e520
- SHA1
  
  59c64305a81d540e0c111feabdc28c36d7e3c7ab
- SHA256
  
  5c2e835f484d05b71071c7d0bff557f2f18c285954d8b10593f49bea36861f3c
- SHA512
  
  10a7acefe086e086fec22eacddaebc8b90a08b1b4c03741cbcf9dcfb31dcdbfbffade771ac179080d8231b449484068f1372c31ad7fefe95a47d6e9750f86fd0
- SSDEEP
  
  6144:n3C9BRo7tvnJ9oH0IRgZvjkUo7tvnJ9oH0IiVByq9CPobNVZL:n3C9ytvngQjgtvngSV3CPobNVh
Score

10^/10

blackmoon njrat banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonnjratbankerdiscoverytrojanupx

behavioral2

blackmoonnjratbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy