blackmoon | a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664 | Triage

Submit
Reports

Overview

overview

Static

static

3

a6244b9c80...64.exe

windows7-x64

a6244b9c80...64.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664
Size

14.9MB
Sample

240929-fwh27stfnc
MD5

38b03752c4a146c09883cc9b8bc5b537
SHA1

49d88e8052b3fb7e65aad52a1d835665872a0a93
SHA256

a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664
SHA512

e0595db4077e169b077a5e6d13dc364bae91572896e722795f888e89c67060caf274d93ebf889b37eea085b6eb2ae8f05dd35e42a911b03b94570fe7e890124e
SSDEEP

393216:wA+dup4czfoFEjCTnraP77pSSqxwruI9L2lm:wA+czf/AraPkKFkm

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664.exe

Resource

win7-20240708-en

blackmoon banker discovery trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664
- Size
  
  14.9MB
- MD5
  
  38b03752c4a146c09883cc9b8bc5b537
- SHA1
  
  49d88e8052b3fb7e65aad52a1d835665872a0a93
- SHA256
  
  a6244b9c80a4f45ec0f34ccb9c27385863e55b8f6b5fb4852c86cac2f5c5b664
- SHA512
  
  e0595db4077e169b077a5e6d13dc364bae91572896e722795f888e89c67060caf274d93ebf889b37eea085b6eb2ae8f05dd35e42a911b03b94570fe7e890124e
- SSDEEP
  
  393216:wA+dup4czfoFEjCTnraP77pSSqxwruI9L2lm:wA+czf/AraPkKFkm
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy